PT-2023-8473 · Linux+1 · Linux Kernel+1

David Ahern

Published

2023-12-21

Updated

2025-10-03

CVE-2023-6200

CVSS v3.1

7.5

High

Vector

AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description A race condition was found in the Linux Kernel, related to the reuse of previously freed memory due to concurrent access to a resource in the fib6 add() function in the net/ipv6/ip6 fib.c module. Under certain conditions, an unauthenticated attacker from an adjacent network could send an ICMPv6 router advertisement packet, causing arbitrary code execution. This issue is associated with the IPv6 implementation in the Linux kernel and can allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-416

Related Identifiers

ALT-PU-2024-10855

ALT-PU-2024-1867

ALT-PU-2025-12647

AZL-34029

AZL-34866

BDU:2024-00926

CVE-2023-6200

ZDI-24-842

Affected Products

Alt Linux

Linux Kernel

PT-2023-8473 · Linux+1 · Linux Kernel+1

CVE-2023-6200

Weakness Enumeration

Related Identifiers

Affected Products

References · 33