{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-2156", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "dateUpdated": "2024-08-02T06:12:20.503Z", "dateReserved": "2023-04-18T00:00:00", "datePublished": "2023-05-09T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2023-08-02T00:00:00"}, "descriptions": [{"lang": "en", "value": "A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to an assertion failure. This may allow an unauthenticated remote attacker to create a denial of service condition on the system."}], "affected": [{"vendor": "n/a", "product": "Linux kernel (RPL protocol)", "versions": [{"version": "Reproducible on the latest mainline.", "status": "affected"}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-23-547/"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196292"}, {"name": "[oss-security] 20230517 Re: IPv6 and Route of Death", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2023/05/17/8"}, {"name": "[oss-security] 20230517 Re: IPv6 and Route of Death", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2023/05/17/9"}, {"name": "[oss-security] 20230518 Re: IPv6 and Route of Death", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2023/05/18/1"}, {"name": "[oss-security] 20230519 Re: IPv6 and Route of Death", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2023/05/19/1"}, {"url": "https://security.netapp.com/advisory/ntap-20230622-0001/"}, {"name": "DSA-5448", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2023/dsa-5448"}, {"name": "DSA-5453", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2023/dsa-5453"}, {"name": "[debian-lts-announce] 20230802 [SECURITY] [DLA 3512-1] linux-5.10 security update", "tags": ["mailing-list"], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00001.html"}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-617", "cweId": "CWE-617"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T06:12:20.503Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-23-547/", "tags": ["x_transferred"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196292", "tags": ["x_transferred"]}, {"name": "[oss-security] 20230517 Re: IPv6 and Route of Death", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2023/05/17/8"}, {"name": "[oss-security] 20230517 Re: IPv6 and Route of Death", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2023/05/17/9"}, {"name": "[oss-security] 20230518 Re: IPv6 and Route of Death", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2023/05/18/1"}, {"name": "[oss-security] 20230519 Re: IPv6 and Route of Death", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2023/05/19/1"}, {"url": "https://security.netapp.com/advisory/ntap-20230622-0001/", "tags": ["x_transferred"]}, {"name": "DSA-5448", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2023/dsa-5448"}, {"name": "DSA-5453", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2023/dsa-5453"}, {"name": "[debian-lts-announce] 20230802 [SECURITY] [DLA 3512-1] linux-5.10 security update", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00001.html"}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "F67355C8-A64B-4676-8228-D06DFF4D37F1", "versionEndExcluding": "5.10.184", "versionStartIncluding": "5.7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "3533752B-917D-4DDA-B50D-01F987C374D0", "versionEndExcluding": "5.15.117", "versionStartIncluding": "5.11", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "827DE634-7B30-489B-8DA2-F753BE881D9B", "versionEndExcluding": "6.1.34", "versionStartIncluding": "5.16", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "BFF8B56C-0201-4D6A-901E-C9C643C04FF6", "versionEndExcluding": "6.2.13", "versionStartIncluding": "6.2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "B8391DAA-AA40-472B-AA05-CD3BD1E7E1E0", "versionEndExcluding": "6.3.8", "versionStartIncluding": "6.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*", "matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to an assertion failure. This may allow an unauthenticated remote attacker to create a denial of service condition on the system."}], "id": "CVE-2023-2156", "lastModified": "2024-02-03T02:34:33.277", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-05-09T22:15:10.133", "references": [{"source": "secalert@redhat.com", "tags": ["Mailing List"], "url": "http://www.openwall.com/lists/oss-security/2023/05/17/8"}, {"source": "secalert@redhat.com", "tags": ["Mailing List"], "url": "http://www.openwall.com/lists/oss-security/2023/05/17/9"}, {"source": "secalert@redhat.com", "tags": ["Mailing List"], "url": "http://www.openwall.com/lists/oss-security/2023/05/18/1"}, {"source": "secalert@redhat.com", "tags": ["Mailing List"], "url": "http://www.openwall.com/lists/oss-security/2023/05/19/1"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196292"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00001.html"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20230622-0001/"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://www.debian.org/security/2023/dsa-5448"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://www.debian.org/security/2023/dsa-5453"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-547/"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-617"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-617"}], "source": "secalert@redhat.com", "type": "Secondary"}]}

{"bugzilla": {"description": "kernel: net: IPv6 RPL protocol reachable assertion leads to DoS", "id": "2196292", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196292"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-617", "details": ["A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to an assertion failure. This may allow an unauthenticated remote attacker to create a denial of service condition on the system.", "A flaw was found in the Linux kernel's networking subsystem within the RPL protocol's handling. This issue results from the improper handling of user-supplied data, which can lead to an assertion failure. This flaw allows an unauthenticated, remote attacker to create a denial of service condition on the system."], "name": "CVE-2023-2156", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Will not fix", "impact": "moderate", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Will not fix", "impact": "moderate", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2023-05-04T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-2156\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-2156\nhttps://www.openwall.com/lists/oss-security/2023/05/17/6\nhttps://www.zerodayinitiative.com/advisories/ZDI-23-547/"], "statement": "Red Hat Enterprise Linux 6, 7, and 8 are not affected by this flaw as they did not include RPL source routing support (upstream commit 8610c7c \"net: ipv6: add support for rpl sr exthdr\"). The flaw cannot be triggered if the `rpl_seg_enabled` sysctl is set to 0. Please note that the `rpl_seg_enabled` sysctl is not enabled by default in Red Hat Enterprise Linux 9. As such, the impact has been lowered to Moderate on Red Hat Enterprise Linux 9.", "threat_severity": "Moderate", "upstream_fix": "kernel 6.2.13"}