CVE-2023-52889
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-52889 is a vulnerability affecting the Linux kernel that has been resolved. It involves a null pointer dereference during the creation of an ICMP raw socket in the apparmor module. The issue arises when SK_CTX(sk)->label is updated in apparmor_socket_post_create(), but the packet is delivered to the socket before this update occurs. Consequently, the packet causes a null pointer dereference, leading to a kernel panic. This vulnerability can result in denial of service and potential system instability when receiving ICMP packets with a secmark set while creating an ICMP raw socket.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.