PT-2024-14652 · Linux+10 · Linux Kernel+10
Tao Liu
·
Published
2023-12-28
·
Updated
2026-03-14
·
CVE-2023-52610
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.7.0-rc3
Description
The Linux kernel has a vulnerability in the net/sched module, specifically in the act ct function. This function adds a reference to the skb (socket buffer) before defragmentation, which can lead to a crash when the skb is cloned and shared at the same time. The issue arises when fragments arrive out of order, causing the last fragment's reference to be reset, resulting in a memory leak. The situation worsens when packet capture is initiated, leading to a crash. The vulnerability is fixed by removing the skb get() call before defragmentation.
Recommendations
For Linux kernel versions prior to 6.7.0-rc3, update to a newer version that includes the fix for this vulnerability. If updating is not possible, consider disabling the act ct function or restricting its use to minimize the risk of exploitation. Additionally, avoid using the skb clone() function in conjunction with act ct to prevent the crash.
Exploit
Fix
DoS
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu