An integer overflow flaw was found in the Linux kernel. This issue leads to the kernel allocating skb_shared_info
in the userspace, which is exploitable in systems without SMAP protection since skb_shared_info
contains references to function pointers.
CPE | Name | Operator | Version |
---|---|---|---|
linux_kernel | le | 6.5.7 |
packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSN-0099-1.html
access.redhat.com/security/cve/CVE-2023-42752
bugzilla.redhat.com/show_bug.cgi?id=2239828
git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=915d975b2ffa
git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=c3b704d4a4a2