CVE-2023-54312
Unknown
Unknown - Not Provided
Buffer Overflow in Linux Kernel BPF tcp_basertt Component
Publication date: 2025-12-30
Last updated on: 2025-12-30
Assigner: kernel.org
Description
Description
In the Linux kernel, the following vulnerability has been resolved:
samples/bpf: Fix buffer overflow in tcp_basertt
Using sizeof(nv) or strlen(nv)+1 is correct.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a buffer overflow issue in the Linux kernel's samples/bpf component, specifically in the tcp_basertt function. The problem was caused by incorrect use of sizeof(nv) or strlen(nv)+1, which could lead to writing beyond the allocated buffer.
How can this vulnerability impact me? :
A buffer overflow vulnerability can potentially allow an attacker to execute arbitrary code, cause a denial of service, or crash the system by corrupting memory. This could compromise system stability and security.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70