CVE-2023-53843
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-09

Last updated on: 2025-12-09

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: reject negative ifindex Recent changes in net-next (commit 759ab1edb56c ("net: store netdevs in an xarray")) refactored the handling of pre-assigned ifindexes and let syzbot surface a latent problem in ovs. ovs does not validate ifindex, making it possible to create netdev ports with negative ifindex values. It's easy to repro with YNL: $ ./cli.py --spec netlink/specs/ovs_datapath.yaml \ --do new \ --json '{"upcall-pid": 1, "name":"my-dp"}' $ ./cli.py --spec netlink/specs/ovs_vport.yaml \ --do new \ --json '{"upcall-pid": "00000001", "name": "some-port0", "dp-ifindex":3,"ifindex":4294901760,"type":2}' $ ip link show -65536: some-port0: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000 link/ether 7a:48:21:ad:0b:fb brd ff:ff:ff:ff:ff:ff ... Validate the inputs. Now the second command correctly returns: $ ./cli.py --spec netlink/specs/ovs_vport.yaml \ --do new \ --json '{"upcall-pid": "00000001", "name": "some-port0", "dp-ifindex":3,"ifindex":4294901760,"type":2}' lib.ynl.NlError: Netlink error: Numerical result out of range nl_len = 108 (92) nl_flags = 0x300 nl_type = 2 error: -34 extack: {'msg': 'integer out of range', 'unknown': [[type:4 len:36] b'\x0c\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0c\x00\x03\x00\xff\xff\xff\x7f\x00\x00\x00\x00\x08\x00\x01\x00\x08\x00\x00\x00'], 'bad-attr': '.ifindex'} Accept 0 since it used to be silently ignored.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-09
Last Modified
2025-12-09
Generated
2026-05-07
AI Q&A
2025-12-09
EPSS Evaluated
2026-05-05
NVD
CVE-2023-53843
EUVD
EUVD-2023-60153
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openvswitch openvswitch *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability in the Linux kernel's openvswitch component involves improper validation of the ifindex (interface index) value. Specifically, openvswitch did not validate ifindex values, allowing the creation of network device ports with negative ifindex values. This issue was exposed due to recent changes in the kernel's net-next code. The vulnerability could be reproduced by creating netdev ports with negative ifindex values, which is invalid. The fix involves rejecting negative ifindex values and validating inputs to prevent such invalid values.


How can this vulnerability impact me? :

The vulnerability allows creation of network device ports with invalid negative ifindex values, which can lead to unexpected behavior or instability in the network stack or applications relying on valid interface indices. This could potentially be exploited to cause denial of service or disrupt network operations by injecting malformed network device configurations.


How can this vulnerability be detected on my network or system? Can you suggest some commands?

This vulnerability can be detected by checking for network devices (netdev ports) with negative ifindex values. You can use the command 'ip link show' to list network interfaces and look for entries with negative ifindex numbers, such as '-65536: some-port0'. Additionally, reproducing the issue with the provided YNL commands can help identify the problem.


What immediate steps should I take to mitigate this vulnerability?

Immediate mitigation involves validating the ifindex input values to prevent creation of netdev ports with negative ifindex. The fix includes rejecting negative ifindex values, which causes commands attempting to create such ports to return errors like 'Netlink error: Numerical result out of range'. Ensuring your system has this validation or applying the patch that rejects negative ifindex values is recommended.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart