PT-2023-1657 · Linux+7 · Linux Kernel+7

Pietro Borrello

Published

2023-01-23

Updated

2025-06-17

CVE-2023-1074

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a memory leak flaw in the Linux kernel's Stream Control Transmission Protocol (SCTP) implementation. This flaw can be exploited when a user starts a malicious networking service and someone connects to this service, potentially leading to a denial of service due to resource starvation for local users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-391

Related Identifiers

ALSA-2023:7077

BDU:2023-01202

CESA-2023_6901

CESA-2023_7077

CVE-2023-1074

DLA-3403-1

DLA-3404-1

MGASA-2023-0087

MGASA-2023-0088

OESA-2023-1173

OESA-2023-1174

OESA-2023-1180

OESA-2023-1381

RHSA-2023:6583

RHSA-2023:6901

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_6901

RHSA-2023_7077

RHSA-2024:0723

RHSA-2024:0725

RHSA-2024:0930

SUSE-SU-2025:01983-1

SUSE-SU-2025_01983-1

USN-5978-1

USN-6001-1

USN-6013-1

USN-6014-1

USN-6025-1

USN-6027-1

USN-6029-1

USN-6030-1

USN-6031-1

USN-6032-1

USN-6040-1

USN-6057-1

USN-6079-1

USN-6091-1

USN-6093-1

USN-6096-1

USN-6134-1

USN-6222-1

USN-6256-1

Affected Products

Almalinux

Astra Linux

Centos

Linuxmint

Linux Kernel

Red Hat

Suse

Ubuntu

PT-2023-1657 · Linux+7 · Linux Kernel+7

CVE-2023-1074

Weakness Enumeration

Related Identifiers

Affected Products

References · 673