Linux Kernel OpenvSwitch Vulnerability Allows Creation of Invalid Netdev Ports
CVE-2023-53843
What is CVE-2023-53843?
A new vulnerability in the Linux kernel’s OpenvSwitch component permits the creation of network device ports with invalid negative ifindex values, compromising the integrity of the networking subsystem. Due to inadequate validation of ifindex inputs, this flaw enables potential attackers to exploit the system, generating netdev ports that are improperly configured. The issue was revealed following a refactoring of the handling of pre-assigned ifindexes. Users can reproduce this vulnerability by executing specific commands that manipulate the ifindex, leading to erroneous network states and potential denial of service. Secure your systems by ensuring proper updates and configurations.
Affected Version(s)
Linux 54c4ef34c4b6f9720fded620e2893894f9f2c554
Linux 54c4ef34c4b6f9720fded620e2893894f9f2c554 < 881faff9e548a7ddfb11595be7c1c649217d27db
Linux 54c4ef34c4b6f9720fded620e2893894f9f2c554