Security Advisory

CVE-2023-39192

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-09 17:57:48

Last updated 2025-11-08 07:10:41

Assigner redhat

State PUBLISHED

Description

A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-of-bounds read by setting the size fields with a value beyond the array boundaries, leading to a crash or information disclosure.

← Browse all CVEs View on cve.org ↗