CVE-2023-52925

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Published Feb 5, 2025

Updated: Feb 6, 2025

Summary

CVE-2023-52925 is a vulnerability affecting the Linux kernel's netfilter and nftables. The issue involves failing to ignore duplicate but expired entries during insertions, causing self-tests to fail. This asymmetry in the nft_pipapo_activate and other remove callbacks may have prompted the removal of the expired check in pipapo_get, but skipping expired elements in this helper function for normal get requests and deactivate callbacks makes little sense. The vulnerability could potentially lead to delete requests failing with unexpected errors.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/x8Qjje
https://www.cve.org/CVERecord?id=CVE-2023-52925
https://nvd.nist.gov/vuln/detail/CVE-2023-52925

Back to Vulnerability Database