CVE-2023-53843

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the networking component, specifically within Open vSwitch (OVS). The issue stems from a lack of input validation for the ifindex parameter, allowing the creation of network device ports with negative ifindex values. This can occur due to changes in net-next (commit 759ab1edb56c) that refactored the handling of pre-assigned ifindex values. The vulnerability was identified through testing with YNL. The ifindex parameter is used to identify network interfaces. Exploitation involves creating a netdev port with a negative ifindex value.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-53843

RHSA-2024:2394

RHSA-2024:3138

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Centos

Linux Kernel

Openvswitch

Red Hat

Ynl

CVE-2023-53843

Related Identifiers

Affected Products

References · 1458