PT-2025-11271 · Linux+6 · Linux Kernel+6
Published
2023-07-20
·
Updated
2026-03-14
·
CVE-2023-52927
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.1.133-1 (Debian bookworm) and versions prior to 6.1.137-1~deb11u1 (Debian 11 bullseye).
Description
The Linux kernel contains a vulnerability in the netfilter module where the
exp (expectation) object may not be removed from the hash table in certain scenarios, specifically when the created connection tracking (ct) object is not confirmed, such as in Open vSwitch (OVS) and TC conntrack. This is resolved by allowing the exp object to remain in the hash table by setting the IPS CONFIRMED status in the template (tmpl).Recommendations
- Upgrade to Linux kernel version 6.1.133-1 or later for Debian bookworm.
- Upgrade to Linux kernel version 6.1.137-1~deb11u1 or later for Debian 11 bullseye.
Exploit
Fix
Use After Free
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu