Reachable Assertion in Linux kernel

#VU89383 Reachable Assertion in Linux kernel

Published: 2024-05-13

Vulnerability identifier: #VU89383

Vulnerability risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-52580

CWE-ID: CWE-617

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a reachable assertion in net/core/flow_dissector.c. A remote attacker on the local network can send specially crafted PTP ethernet frames to the system and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel:

External links
http://git.kernel.org/stable/c/f90a7b9586d72f907092078a9f394733ca502cc9
http://git.kernel.org/stable/c/488ea2a3e2666022f79abfdd7d12e8305fc27a40
http://git.kernel.org/stable/c/48e105a2a1a10adc21c0ae717969f5e8e990ba48
http://git.kernel.org/stable/c/75ad80ed88a182ab2ad5513e448cf07b403af5c3

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Juniper Secure Analytics (JSA)

Red Hat Enterprise Linux 8 update for kernel

Red Hat Enterprise Linux 8 update for kernel-rt

Red Hat Enterprise Linux 9 update for kernel

Denial of service in Linux kernel ETH_P_1588 flow dissector