Security Advisory

CVE-2023-39193

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-09 17:57:49

Last updated 2025-11-06 19:47:45

Assigner redhat

State PUBLISHED

Description

A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.

← Browse all CVEs View on cve.org ↗