TCP Vulnerability in Linux Kernel Affecting Memory Management
CVE-2023-53669
What is CVE-2023-53669?
A vulnerability has been identified in the Linux kernel's TCP implementation that affects memory management during transmission. Specifically, the function skb_copy_ubufs() can lead to crashes when handling zerocopy TCP transmissions with hugepages, particularly if the skb length exceeds approximately 68 KB. This occurs due to an erroneous assumption within skb_copy_ubufs() regarding the ability to copy payloads using a limited number of MAX_SKB_FRAGS order-0 pages. With BIG TCP allowing skb sizes up to 512 KB, this oversight may result in instability for systems under specific network configurations. A resolution has been implemented, where higher order pages can be utilized when necessary to prevent memory leakage and enhance system reliability.
Affected Version(s)
Linux 7c4e983c4f3cf94fcd879730c6caa877e0768a4d < 7fa93e39fbb0566019c388a8038a4d58552e0910
Linux 7c4e983c4f3cf94fcd879730c6caa877e0768a4d < 3c77a377877acbaf03cd7caa21d3644a5dd16301
Linux 7c4e983c4f3cf94fcd879730c6caa877e0768a4d < 9cd62f0ba465cf647c7d8c2ca7b0d99ea0c1328f