CVE-2023-52997

In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in ip_metrics_convert() if (!type) continue; if (type > RTAX_MAX) return -EINVAL; ... metrics[type - 1] = val; @type being used as an array index, we need to prevent cpu speculation or risk leaking kernel memory content.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/1d1d63b612801b3f0a39b7d4467cad0abd60e5c8	Patch
https://git.kernel.org/stable/c/34c6142f0df9cd75cba5a7aa9df0960d2854b415	Patch
https://git.kernel.org/stable/c/6850fe301d015a7d2012d1de8caf43dafb7cc2f6	Patch
https://git.kernel.org/stable/c/746db9ec1e672eee13965625ddac0d97e16fa20c	Patch
https://git.kernel.org/stable/c/d50e7348b44f1e046121ff5be01b7fb6978a1149	Patch
https://git.kernel.org/stable/c/ef050cf5fb70d995a0d03244e25179b7c66a924a	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc5::::::

History

30 Oct 2025, 16:40

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/1d1d63b612801b3f0a39b7d4467cad0abd60e5c8 -~~	() https://git.kernel.org/stable/c/1d1d63b612801b3f0a39b7d4467cad0abd60e5c8 - Patch
References	~~() https://git.kernel.org/stable/c/34c6142f0df9cd75cba5a7aa9df0960d2854b415 -~~	() https://git.kernel.org/stable/c/34c6142f0df9cd75cba5a7aa9df0960d2854b415 - Patch
References	~~() https://git.kernel.org/stable/c/6850fe301d015a7d2012d1de8caf43dafb7cc2f6 -~~	() https://git.kernel.org/stable/c/6850fe301d015a7d2012d1de8caf43dafb7cc2f6 - Patch
References	~~() https://git.kernel.org/stable/c/746db9ec1e672eee13965625ddac0d97e16fa20c -~~	() https://git.kernel.org/stable/c/746db9ec1e672eee13965625ddac0d97e16fa20c - Patch
References	~~() https://git.kernel.org/stable/c/d50e7348b44f1e046121ff5be01b7fb6978a1149 -~~	() https://git.kernel.org/stable/c/d50e7348b44f1e046121ff5be01b7fb6978a1149 - Patch
References	~~() https://git.kernel.org/stable/c/ef050cf5fb70d995a0d03244e25179b7c66a924a -~~	() https://git.kernel.org/stable/c/ef050cf5fb70d995a0d03244e25179b7c66a924a - Patch
CWE		NVD-CWE-noinfo
First Time		Linux linux Kernel Linux
CPE		cpe:2.3:o:linux:linux_kernel:6.2:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc5:::::: cpe:2.3:o:linux:linux_kernel::::::::
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ipv4: evitar un potencial gadget spectre v1 en ip_metrics_convert() if (!type) continue; if (type > RTAX_MAX) return -EINVAL; ... metrics[type - 1] = val; @type se utiliza como un índice de matriz, debemos evitar la especulación de la CPU o el riesgo de filtrar el contenido de la memoria del kernel.
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5

27 Mar 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-27 17:15

Updated : 2025-10-30 16:40

NVD link : CVE-2023-52997

Mitre link : CVE-2023-52997

CVE.ORG link : CVE-2023-52997

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

5.5 /10