Fluid Attacks Database

Description

A flaw was found in the Linux kernel. A local attacker with low privileges could exploit a resource leak vulnerability within the xfrm subsystem. This occurs because a network device (netdev) reference tracker is incorrectly released during direction checks. Successful exploitation can lead to a Denial of Service (DoS) due to the exhaustion of system resources.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel9	kernel	<0:5.14.0-362.8.1.el9_3	0:5.14.0-362.8.1.el9_3
rpm rhel9	kernel-rt	-	-

Aliases

1. CVE-2023-542732. NVD-2023-542733. OSV-2023-54273

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.