CVE-2023-32269

CVSS V2 None CVSS V3 None

Description

An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing configured or the attacker must have the CAP_NET_ADMIN capability.

Overview

CVE ID
CVE-2023-32269

Assigner
cve@mitre.org

Vulnerability Status
Received

Published Version
2023-05-05T17:15:09

Last Modified Date
2023-05-05T17:15:09

References

Reference URL	Reference Tags
https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.11
https://github.com/torvalds/linux/commit/611792920925fb088ddccbe2783c7f92fdfb6b64

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-32269
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32269

History

Created	Old Value	New Value	Data Type	Notes
2023-05-05 18:00:32				Added to TrackCVE