6 matches found
Astra Linux - уязвимость в linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: tipc: Do not update the MTU if msgmax is too small during MTU negotiation. During link MTU negotiation, a malicious peer may send an “Activate msg” with a very small MTU, e.g., 4, as tested by Shuang. Without checking for the...
SUSE CVE-2023-53517
In the Linux kernel, the following vulnerability has been resolved: tipc: do not update mtu if msgmax is too small in mtu negotiation When doing link mtu negotiation, a malicious peer may send Activate msg with a very small mtu, e.g. 4 in Shuang's testing, without checking for the minimum mtu,...
CVE-2023-53517
In the Linux kernel, the following vulnerability has been resolved: tipc: do not update mtu if msgmax is too small in mtu negotiation When doing link mtu negotiation, a malicious peer may send Activate msg with a very small mtu, e.g. 4 in Shuang's testing, without checking for the minimum mtu,...
CVE-2023-53517
The CVE-2023-53517 vulnerability is in the Linux kernel TIPC mtu negotiation logic. When a peer sends an Activate message with a very small mtu (e.g., 4), tipc_link_proto_rcv() can set l->mtu to 4 and then n->links[bearer_id].mtu to 4294967228, causing an overflow in tipc_link_mss(). This c...
CVE-2023-53517 tipc: do not update mtu if msg_max is too small in mtu negotiation
In the Linux kernel, the following vulnerability has been resolved: tipc: do not update mtu if msgmax is too small in mtu negotiation When doing link mtu negotiation, a malicious peer may send Activate msg with a very small mtu, e.g. 4 in Shuang's testing, without checking for the minimum mtu,...
PT-2025-40224
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0.neta Description The Linux kernel contains a flaw in the tipc Trusted Inter-Process Communication subsystem related to Maximum Transmission Unit MTU negotiation. A malicious peer could potentially send an...