CVE-2023-53462

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contained an uninitialized value access issue within the fill frame info() function in the hsr forward.c file. This issue was identified by Syzbot and occurs when handling packets. The root cause is related to VLAN support not being implemented in the hsr driver, leading to an error when processing packets with the ETH P 8021Q protocol. The issue manifests as an uninitialized value being used during packet processing, potentially leading to unpredictable behavior or system instability. The call trace indicates the issue occurs during the hsr forward skb function and propagates through various networking functions including dev queue xmit and sock sendmsg.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.