PT-2025-40763 · Linux+1 · Linux Kernel+1

Published

2023-08-04

Updated

2025-11-28

CVE-2023-53600

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc3+ #309

Description A flaw exists in the Linux kernel related to handling IPv4 Path MTU Discovery (PMTUD) errors within tunnels. Specifically, the ip compute csum() function is unable to process nonlinear skb structures, leading to a kernel slab-out-of-bounds error when attempting to generate an ICMP error message in response to a non-linear skb. This issue manifests as a KASAN splat and can cause processes, such as iperf3, to become unresponsive. The issue occurs when emitting an ICMP error. The vulnerable function is ip compute csum().

Recommendations Update to Linux kernel version 6.5.0-rc3+ #309 or a later version to resolve this issue.

Exploit

Fix

Out of bounds Read

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-119

Related Identifiers

BDU:2026-04424

CVE-2023-53600

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4301-1

Affected Products

Linux Kernel

Suse

PT-2025-40763 · Linux+1 · Linux Kernel+1

CVE-2023-53600

Weakness Enumeration

Related Identifiers

Affected Products

References · 1019