CVE-2023-32269

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-32269

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-32269.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-32269

Downstream

DEBIAN-CVE-2023-32269

OESA-2023-1284

SUSE-SU-2023:2501-1

SUSE-SU-2023:2502-1

SUSE-SU-2023:2506-1

SUSE-SU-2023:2507-1

SUSE-SU-2023:2534-1

SUSE-SU-2023:2537-1

SUSE-SU-2023:2538-1

SUSE-SU-2023:2611-1

SUSE-SU-2023:2651-1

SUSE-SU-2023:2805-1

Related

Published

2023-05-05T17:15:09Z

Modified

2025-08-09T20:01:27Z

Severity

6.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/afnetrom.c, there is a use-after-free because accept is also allowed for a successfully connected AFNETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing configured or the attacker must have the CAPNETADMIN capability.

References

Affected packages