CVE-2023-52880

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-52880
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52880.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-52880
Downstream
Related
Published
2024-05-24T15:33:17.439Z
Modified
2026-05-28T03:54:00.214767110Z
Summary
tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc
Details

In the Linux kernel, the following vulnerability has been resolved:

tty: ngsm: require CAPNETADMIN to attach NGSM0710 ldisc

Any unprivileged user can attach NGSM0710 ldisc, but it requires CAPNET_ADMIN to create a GSM network anyway.

Require initial namespace CAPNETADMIN to do that.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52880.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e1eaea46bb4020b38a141b84f88565d4603f8dd0
Fixed
7d303dee473ba3529d75b63491e9963342107bed
Fixed
7a529c9023a197ab3bf09bb95df32a3813f7ba58
Fixed
ada28eb4b9561aab93942f3224a2e41d76fe57fa
Fixed
2d154a54c58f9c8375bfbea9f7e51ba3bfb2e43a
Fixed
2b85977977cbd120591b23c2450e90a5806a7167
Fixed
67c37756898a5a6b2941a13ae7260c89b54e0d88

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52880.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.35
Fixed
4.19.312
Type
ECOSYSTEM
Events
Introduced
4.20.0
Fixed
5.4.274
Type
ECOSYSTEM
Events
Introduced
5.5.0
Fixed
5.10.215
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.155
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.86

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52880.json"