CVE-2023-53439

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to the handling of transport header magic values within the skb partial csum set() function. Specifically, the code does not prevent callers from accidentally setting skb->transport header to 0xFFFF, a value reserved to mark the presence of a transport header. This issue was identified through fuzzing and reported by syzbot. The vulnerability is located in the virtio net hdr to skb function and can be triggered during packet sending operations.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.