PT-2023-8498 · Linux+10 · Linux Kernel+10

Publicado

2023-01-13

·

Atualizado

2026-01-15

·

CVE-2023-52340

CVSS v2.0

7.8

Alta

VetorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3
Description The issue is related to the IPv6 implementation in the Linux kernel, specifically with the net/ipv6/route.c file. It involves incorrect handling of boundary conditions, potentially allowing a remote attacker to cause a denial of service. This can occur when IPv6 packets are sent in a loop via a raw socket, leading to "network is unreachable" errors. The max size threshold can be easily consumed, contributing to this problem.
Recommendations For Linux kernel versions prior to 6.3, update to version 6.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of raw sockets to minimize the risk of exploitation. Additionally, monitor network traffic for signs of attempted denial-of-service attacks and implement measures to prevent such attacks.

Correção

DoS

Resource Exhaustion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-19CWE-400

Identificadores relacionados

ALSA-2024:2950
ALSA-2024:3138
ALT-PU-2024-14046
AZL-43279
BDU:2024-01036
CESA-2024_2950
CESA-2024_3138
CVE-2023-52340
DLA-3840-1
DLA-3841-1
INFSA-2024_2950
INFSA-2024_3138
OESA-2024-1175
OESA-2024-1176
OESA-2024-1177
OESA-2024-1178
OESA-2024-1179
OESA-2024-1180
OPENSUSE-SU-2024_0857-1
OPENSUSE-SU-2024_0858-1
OPENSUSE-SU-2024_3631-1
OPENSUSE-SU-2024_3694-1
OPENSUSE-SU-2024_3793-1
OPENSUSE-SU-2024_3829-1
OPENSUSE-SU-2024_3852-1
OPENSUSE-SU-2024_4122-1
OPENSUSE-SU-2024_4218-1
OPENSUSE-SU-2024_4234-1
OPENSUSE-SU-2025_0107-1
OPENSUSE-SU-2025_0158-1
OPENSUSE-SU-2025_0261-1
OPENSUSE-SU-2025_0266-1
RHSA-2023:2148
RHSA-2023:2458
RHSA-2023_2148
RHSA-2023_2458
RHSA-2024:2950
RHSA-2024:3138
RHSA-2024_2950
RHSA-2024_3138
RLSA-2024:2950
RLSA-2024:3138
SUSE-SU-2024:0855-1
SUSE-SU-2024:0856-1
SUSE-SU-2024:0857-1
SUSE-SU-2024:0858-1
SUSE-SU-2024:0900-1
SUSE-SU-2024:0900-2
SUSE-SU-2024:0910-1
SUSE-SU-2024:0925-1
SUSE-SU-2024:0926-1
SUSE-SU-2024:0975-1
SUSE-SU-2024:0976-1
SUSE-SU-2024:0977-1
SUSE-SU-2024:1181-1
SUSE-SU-2024:1183-1
SUSE-SU-2024:1184-1
SUSE-SU-2024:1207-1
SUSE-SU-2024:1229-1
SUSE-SU-2024:1236-1
SUSE-SU-2024:1239-1
SUSE-SU-2024:1246-1
SUSE-SU-2024:1248-1
SUSE-SU-2024:1249-1
SUSE-SU-2024:1251-1
SUSE-SU-2024:1252-1
SUSE-SU-2024:1257-1
SUSE-SU-2024:1273-1
SUSE-SU-2024:1274-1
SUSE-SU-2024:1278-1
SUSE-SU-2024:1280-1
SUSE-SU-2024:1288-1
SUSE-SU-2024:1292-1
SUSE-SU-2024:1298-1
SUSE-SU-2024:1299-1
SUSE-SU-2024:1312-1
SUSE-SU-2024:1318-1
SUSE-SU-2024:1362-1
SUSE-SU-2024:1409-1
SUSE-SU-2024:1411-1
SUSE-SU-2024:1669-1
SUSE-SU-2024:1682-1
SUSE-SU-2024:1711-1
SUSE-SU-2024:1749-1
SUSE-SU-2024:2092-1
SUSE-SU-2024:2162-1
SUSE-SU-2024:2207-1
SUSE-SU-2024:2337-1
SUSE-SU-2024:2446-1
SUSE-SU-2024:2722-1
SUSE-SU-2024:2824-1
SUSE-SU-2024:2850-1
SUSE-SU-2024:3379-1
SUSE-SU-2024:3399-1
SUSE-SU-2024:3631-1
SUSE-SU-2024:3694-1
SUSE-SU-2024:3793-1
SUSE-SU-2024:3829-1
SUSE-SU-2024:3852-1
SUSE-SU-2024:4122-1
SUSE-SU-2024:4218-1
SUSE-SU-2024:4234-1
SUSE-SU-2025:0107-1
SUSE-SU-2025:0158-1
SUSE-SU-2025:0261-1
SUSE-SU-2025:0266-1
USN-6725-1
USN-6725-2
USN-6726-1
USN-6726-2
USN-6726-3

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu