CVE-2023-52735

moderate-risk

Published 2024-05-21

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself sock_map proto callbacks should never call themselves by design. Protect against bugs like [1] and break out of the recursive loop to avoid a stack overflow in favor of a resource leak. [1] https://lore.kernel.org/all/00000000000073b14905ef2e7401@google.com/

Do I need to act?

0.05% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.1/10 Critical

NETWORK / LOW complexity

Affected Products (7)

Linux Kernel

Affected Vendors

Linux

References (6)

Patch https://git.kernel.org/stable/c/5b4a79ba65a1ab479903fff2e604865d229b70a9

Patch https://git.kernel.org/stable/c/7499859881488da97589f3c79cc66fa75748ad49

Patch https://git.kernel.org/stable/c/f312367f5246e04df564d341044286e9e37a97ba

Patch https://git.kernel.org/stable/c/5b4a79ba65a1ab479903fff2e604865d229b70a9

Patch https://git.kernel.org/stable/c/7499859881488da97589f3c79cc66fa75748ad49

Patch https://git.kernel.org/stable/c/f312367f5246e04df564d341044286e9e37a97ba

/ 100

moderate-risk

Severity 31/34 · Critical

Exploitability 0/34 · Minimal

Exposure 14/34 · Moderate