Integer Overflow Vulnerability in Linux Kernel Allows Userspace Allocation of skb_shared_info

Integer Overflow Vulnerability in Linux Kernel Allows Userspace Allocation of skb_shared_info

CVE-2023-42752 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

An integer overflow flaw was found in the Linux kernel. This issue leads to the kernel allocating `skb_shared_info` in the userspace, which is exploitable in systems without SMAP protection since `skb_shared_info` contains references to function pointers.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.