Description

In the Linux kernel, the following vulnerability has been resolved: hsr: Prevent use after free in prp_create_tagged_frame() The prp_fill_rct() function can fail. In that situation, it frees the skb and returns NULL. Meanwhile on the success path, it returns the original skb. So it's straight forward to fix bug by using the returned value.

INFO

Published Date :

2024-05-21T15:31:43.863Z

Last Modified :

2025-05-04T07:44:12.923Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52846 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52846.

URL Resource
https://git.kernel.org/stable/c/1787b9f0729d318d67cf7c5a95f0c3dba9a7cc18 cve-icon cve-icon
https://git.kernel.org/stable/c/6086258bd5ea7b5c706ff62da42b8e271b2401db cve-icon cve-icon
https://git.kernel.org/stable/c/876f8ab52363f649bcc74072157dfd7adfbabc0d cve-icon cve-icon
https://git.kernel.org/stable/c/a1a485e45d24b1cd8fe834fd6f1b06e2903827da cve-icon cve-icon
https://git.kernel.org/stable/c/d103fb6726904e353b4773188ee3d3acb4078363 cve-icon cve-icon
https://git.kernel.org/stable/c/ddf4e04e946aaa6c458b8b6829617cc44af2bffd cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052113-CVE-2023-52846-c0ec@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52846 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52846 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact