#VU74631 Infinite loop in Linux kernel - CVE-2023-1390


Vulnerability identifier: #VU74631

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-1390

CWE-ID: CWE-835

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in tipc_link_xmit() within the Linux kernel TIPC kernel module when parsing UDp packets. A remote attacker can send two small UDP packets to a system with a UDP bearer and consume all available CPU resources.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://github.com/torvalds/linux/commit/b77413446408fdd256599daf00d5be72b5f3e7c6
https://gist.github.com/netspooky/bee2d07022f6350bb88eaa48e571d9b5
https://infosec.exchange/@_mattata/109427999461122360

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell Cloud Tiering Appliance
Multiple vulnerabilities in Dell Data Protection Central
Red Hat Enterprise Linux 8.2 update for kpatch-patch
Red Hat Enterprise Linux 8.2 Telecommunications Update Service update for kernel-rt
Red Hat Enterprise Linux 8 update for kernel
SUSE update for the Linux Kernel
SUSE update for the Linux Kernel (Live Patch 22 for SLE 15 SP3)
SUSE update for the Linux Kernel (Live Patch 32 for SLE 15 SP2)
SUSE update for the Linux Kernel (Live Patch 28 for SLE 15 SP3)
SUSE update for the Linux Kernel (Live Patch 33 for SLE 12 SP5)