Severity
High
Analysis Summary
CVE-2023-35788
Linux Kernel could allow a local authenticated attacker to gain elevated privileges on the system, caused by an off-by-one flaw in the fl_set_geneve_opt fucntion. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges or cause a denial of service condition.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2023-35788
Affected Vendors
Linux
Affected Products
- Linux Kernel 5.10
- Linux Kernel 6.3.1
- Linux Kernel 4.19
- Linux Kernel 4.20
- Linux Kernel 5.11
- Linux Kernel 6.3.0
- Linux Kernel 6.3.2
- Linux Kernel 6.3.3
- Linux Kernel 6.3.4
- Linux Kernel 6.3.5
- Linux Kernel 6.3.6
Remediation
Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information.