• caglararli@hotmail.com
  • 05386281520

CVE-2023-52906 | Linux Kernel up to 5.4.228/5.10.163/5.15.88/6.1.6 lib/nlattr.c nla_get_range_unsigned data authenticity

Çağlar Arlı      -    44 Views

CVE-2023-52906 | Linux Kernel up to 5.4.228/5.10.163/5.15.88/6.1.6 lib/nlattr.c nla_get_range_unsigned data authenticity

A vulnerability was found in Linux Kernel up to 5.4.228/5.10.163/5.15.88/6.1.6. It has been classified as problematic. This affects the function nla_get_range_unsigned in the library lib/nlattr.c. The manipulation leads to insufficient verification of data authenticity. This vulnerability is uniquely identified as CVE-2023-52906. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.