retired/CVE-2023-52523


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets
References:
Notes:
 carnil> Introduced in 122e6c79efe1 ("sock_map: Update sock type checks for UDP").
 carnil> Vulnerable versions: 5.13-rc1.
Bugs:
upstream: released (6.6-rc5) [b80e31baa43614e086a9d29dc1151932b1bd7fc5]
6.7-upstream-stable: N/A "Fixed before branching point"
6.6-upstream-stable: N/A "Fixed before branching point"
6.1-upstream-stable: released (6.1.57) [b8f97e47b6fb84fcf2f5a22e725eefb6cf5070c2]
5.10-upstream-stable: N/A "Vulnerable code not present"
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.5.8-1)
6.1-bookworm-security: released (6.1.64-1)
5.10-bullseye-security: N/A "Vulnerable code not present"
4.19-buster-security: N/A "Vulnerable code not present"