4 matches found
SUSE CVE-2023-53372
In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with sctpwalkifwdtsn, it only checks the pos against the end of the chunk. However, the data left for the last pos may be sizeofstruct...
UBUNTU-CVE-2023-53372
In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with sctpwalkifwdtsn, it only checks the pos against the end of the chunk. However, the data left for the last pos may be sizeofstruct...
CVE-2023-53372
CVE-2023-53372 — Linux kernel SCTP vulnerability. The issue arises in sctp_ifwdtsn_skip where, while traversing ifwdtsn skips via _sctp_walk_ifwdtsn, the code may read beyond the chunk boundary because the remaining data can be smaller than sizeof(struct sctp_ifwdtsn_skip). This can cause a cover...
CVE-2023-53372 sctp: fix a potential overflow in sctp_ifwdtsn_skip
In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with sctpwalkifwdtsn, it only checks the pos against the end of the chunk. However, the data left for the last pos may be sizeofstruct...