CVE-2023-53477

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue in the IPv6 implementation related to the calculation of the nexthop length in the rt6 nlmsg size() function. Specifically, when handling lwtunnel encapsulation, the calculation does not correctly account for the encapsulation size of all sibling routes, potentially leading to an incorrect nexthop length. This can trigger a warning in inet6 rt notify(). The issue is reproducible by adding multiple ipvlan interfaces and appending IPv6 routes with encapsulation. The rt6 nh nlmsg size() function is used to correct the calculation by adding the nexthop length of each sibling.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.