CVE-2023-52889

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 17, 2024
Updated: Aug 19, 2024
CWE ID 476

Summary

CVE-2023-52889 is a vulnerability affecting the Linux kernel that has been resolved. It involves a null pointer dereference during the creation of an ICMP raw socket in the apparmor module. The issue arises when SK_CTX(sk)->label is updated in apparmor_socket_post_create(), but the packet is delivered to the socket before this update occurs. Consequently, the packet causes a null pointer dereference, leading to a kernel panic. This vulnerability can result in denial of service and potential system instability when receiving ICMP packets with a secmark set while creating an ICMP raw socket.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share