QwikSec

Security Database

CVE

CWE

Training

CVE-2023-2156

Published: May 9, 2023

Modified: Aug 2, 2024

PUBLISHED

Description

A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to an assertion failure. This may allow an unauthenticated remote attacker to create a denial of service condition on the system.

Vendor	Product	Versions
n/a	Linux kernel (RPL protocol)	affected `Reproducible on the latest mainline.`

Weaknesses (CWE)

References

https://www.zerodayinitiative.com/advisories/ZDI-23-547/

https://bugzilla.redhat.com/show_bug.cgi?id=2196292

[oss-security] 20230517 Re: IPv6 and Route of Death

mailing-list

[oss-security] 20230517 Re: IPv6 and Route of Death

mailing-list

[oss-security] 20230518 Re: IPv6 and Route of Death

mailing-list

[oss-security] 20230519 Re: IPv6 and Route of Death

mailing-list

https://security.netapp.com/advisory/ntap-20230622-0001/

vendor-advisory

vendor-advisory

[debian-lts-announce] 20230802 [SECURITY] [DLA 3512-1] linux-5.10 security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.