CVE-2023-52999

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description A use-after-free (UaF) issue has been identified in the Linux kernel's netns ops registration error path. When net assign generic() fails, the error path in ops init() attempts to clear the gen pointer slot, but the gen pointer itself has not been modified yet, leading to an out-of-bounds error. This issue was discovered through code inspection and verified with explicit error injection on a kasan-enabled kernel.

Recommendations For Linux kernel versions prior to the fixed version, apply the patch that skips the gen pointer de-reference in the error path to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable ops init() function until a patch is available.