Memory Leak Vulnerability in ctnetlink_create_conntrack in Linux Kernel

Memory Leak Vulnerability in ctnetlink_create_conntrack in Linux Kernel

CVE-2023-7192 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This issue may allow a local attacker with CAP_NET_ADMIN privileges to cause a denial of service (DoS) attack due to a refcount overflow.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.