Potential Overflow Vulnerability in Linux Kernel Affecting SCTP Functionality
CVE-2023-53372

7.8HIGH

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2023-53372?

A vulnerability in the Linux kernel's SCTP handling could result in a potential overflow condition during the traversal of ifwdtsn skips. Specifically, the issue arises when the _sctp_walk_ifwdtsn function checks the position against the end of the chunk. In certain scenarios, the position may be less than the size of the structure sctp_ifwdtsn_skip, leading to a dereference that could cause an overflow. This has been resolved by implementing additional checks to ensure that the position is validated against the effective end of the data chunk, thereby enhancing the safety and integrity of SCTP operations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 0fc2ea922c8ad5520c80f03facbf396c81dce802 < 4fbd094d4131a10d06a45d64158567052a35b3f4

Linux 0fc2ea922c8ad5520c80f03facbf396c81dce802

Linux 0fc2ea922c8ad5520c80f03facbf396c81dce802 < 79b28f42214a3d0d6a8c514db3602260bd5d6cb5

References

https://git.kernel.org/stable/c/4fbd094d4131a10d06a45d641...
https://git.kernel.org/stable/c/ad831a7079c99c01e801764b5...
https://git.kernel.org/stable/c/79b28f42214a3d0d6a8c514db...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.