PT-2025-37556 · Linux+4 · Linux Kernel+4

Published

2023-08-02

Updated

2026-04-14

CVE-2023-53192

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc2+ #34

Description A flaw exists in the Linux kernel's vxlan implementation related to the nexthop hash size. The nexthop code anticipates a 31-bit hash, but receives a 32-bit hash from skb get hash(), leading to potential issues. Specifically, in hash threshold nexthop groups, nexthop select path hthr() may disproportionately select the first nexthop group entry. In resilient nexthop groups, nexthop select path res() could experience an out-of-bounds access in nh buckets[], potentially leading to a system panic.

Recommendations Update to a version newer than 6.5.0-rc2+ #34.

Exploit

Fix

DoS

Buffer Overflow

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-129

Related Identifiers

ALSA-2025_16880

BDU:2026-05996

CVE-2023-53192

RHSA-2024:2394

RHSA-2024_2394

RHSA-2026:2573

RHSA-2026:2577

RHSA-2026:3267

RHSA-2026:3358

SUSE-SU-2025:03600-1

SUSE-SU-2025:03634-1

SUSE-SU-2025:20851-1

SUSE-SU-2025:20861-1

SUSE-SU-2025:20870-1

SUSE-SU-2025:20898-1

SUSE-SU-2025:3751-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4141-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Red Os

Suse

PT-2025-37556 · Linux+4 · Linux Kernel+4

CVE-2023-53192

Weakness Enumeration

Related Identifiers

Affected Products

References · 1413