CVE-2023-52435

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.7.0

Description The vulnerability is related to the skb segment function in the Linux kernel's networking component. It can cause a general protection fault due to a null pointer dereference when the mss value exceeds the maximum allowed value. The issue arises from the computation mss = mss * partial segs, which can lead to a bad final result if the initial mss value is not properly limited. The vulnerability can be exploited to crash the kernel.

Recommendations To resolve the issue, update the Linux kernel to version 6.7.0 or later, which includes the fix for the skb segment function. Alternatively, apply the patch that limits the segmentation to prevent the mss value from exceeding the maximum allowed value.

Note: The provided input data does not specify the exact version that contains the fix, but it is mentioned that the issue is resolved in the Linux kernel. Therefore, updating to the latest version available is recommended.