← Volver a CVEs

CVE-2023-53032

MEDIUM

5.5

Descripcion

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function. When first_ip is 0, last_ip is 0xFFFFFFFF, and netmask is 31, the value of an arithmetic expression 2 << (netmask - mask_bits - 1) is subject to overflow due to a failure casting operands to a larger data type before performing the arithmetic. Note that it's harmless since the value will be checked at the next step. Found by InfoTeCS on behalf of Linux Verification Center (linuxtesting.org) with SVACE.

Detalles CVE

Puntuacion CVSS v3.15.5

SeveridadMEDIUM

Vector CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Vector de ataqueLOCAL

ComplejidadLOW

Privilegios requeridosLOW

Interaccion usuarioNONE

Publicado3/27/2025

Ultima modificacion10/31/2025

Fuentenvd

Avistamientos honeypot0

Productos afectados

linux:linux_kernel

Debilidades (CWE)

CWE-190

Referencias

https://git.kernel.org/stable/c/4e6a70fd840400e3a2e784a6673968a3eb2431c0(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/511cf17b2447fc41cfef8d71936e1fa53e395c1e(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/9ea4b476cea1b7d461d16dda25ca3c7e616e2d15(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/dfd834ccc1b88bbbab81b9046a3a539dd0c2d14f(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/e137d9bb26bd85ce07323a38e38ceb0b160db841(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/e88865876d47c790be0d5e23973499d75d034364(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/feefb33eefa166fc3e0fd17547b0bc0cb3baced9(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.