PT-2023-8744 · Linux+8 · Linux Kernel+8
Syzbot
·
Published
2023-09-19
·
Updated
2025-09-29
·
CVE-2023-52578
CVSS v3.1
7.0
High
| Vector | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.6.0-rc1-syzkaller-00236-gad8a69f361b9
Description
The vulnerability is related to a data-race condition in the
br handle frame finish() function, which can run from multiple CPUs without mutual exclusion. This can lead to a denial-of-service (DoS) condition. The issue is resolved by adopting SMP-safe DEV STATS INC() to update dev->stats fields. The vulnerability was reported by the Kernel Concurrency Sanitizer.Recommendations
To resolve the issue, update the Linux kernel to a version that includes the fix for the data-race condition in the
br handle frame finish() function. As a temporary workaround, consider disabling the br handle frame finish() function until a patch is available. However, this may have unintended consequences and should be carefully evaluated before implementation.At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
Race Condition
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Red Os
Rocky Linux
Ubuntu