Vulnerability-Lookup

RHBA-2024:5207

Vulnerability from csaf_redhat - Published: 2024-08-12 07:51 - Updated: 2026-02-23 18:55

Summary

Red Hat Bug Fix Advisory: updated el8/flatpak-sdk container image

Severity

Moderate

Notes

Topic: Updated el8/flatpak-sdk container image is now available for Red Hat Enterprise Linux 8.

Details: The el8/flatpak-sdk container image has been updated for Red Hat Enterprise Linux 8 to address the following security advisory: RHSA-2024:5101 (see References) Users of el8/flatpak-sdk container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images. You can find images updated by this advisory in Red Hat Container Catalog (see References).

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2023-53597

In the Linux kernel, the following vulnerability has been resolved: cifs: fix mid leak during reconnection after timeout threshold When the number of responses with status of STATUS_IO_TIMEOUT exceeds a specified threshold (NUM_STATUS_IO_TIMEOUT), we reconnect the connection. But we do not return the mid, or the credits returned for the mid, or reduce the number of in-flight requests. This bug could result in the server->in_flight count to go bad, and also cause a leak in the mids. This change moves the check to a few lines below where the response is decrypted, even of the response is read from the transform header. This way, the code for returning the mids can be reused. Also, the cifs_reconnect was reconnecting just the transport connection before. In case of multi-channel, this may not be what we want to do after several timeouts. Changed that to reconnect the session and the tree too. Also renamed NUM_STATUS_IO_TIMEOUT to a more appropriate name MAX_STATUS_IO_TIMEOUT.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-772 - Missing Release of Resource after Effective Lifetime

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64		—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-54114

A flaw was found in the Linux kernel, specifically within its Network Service Header (NSH) module. A local attacker could exploit this vulnerability by sending specially crafted network packets, which would cause the system to crash. This issue, a type of Denial of Service (DoS), arises from an incorrect calculation during network packet processing, leading to a critical error in memory management.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-253 - Incorrect Check of Function Return Value

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64		—	Vendor Fix fix

Threats

Impact Low

References

175 references

URL	Category
https://access.redhat.com/errata/RHBA-2024:5207	self
https://access.redhat.com/errata/RHSA-2024:5101	external
https://catalog.redhat.com/software/containers/re…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263879	external
https://bugzilla.redhat.com/show_bug.cgi?id=2265645	external
https://bugzilla.redhat.com/show_bug.cgi?id=2265650	external
https://bugzilla.redhat.com/show_bug.cgi?id=2265797	external
https://bugzilla.redhat.com/show_bug.cgi?id=2266341	external
https://bugzilla.redhat.com/show_bug.cgi?id=2266347	external
https://bugzilla.redhat.com/show_bug.cgi?id=2266497	external
https://bugzilla.redhat.com/show_bug.cgi?id=2266594	external
https://bugzilla.redhat.com/show_bug.cgi?id=2267787	external
https://bugzilla.redhat.com/show_bug.cgi?id=2268118	external
https://bugzilla.redhat.com/show_bug.cgi?id=2269070	external
https://bugzilla.redhat.com/show_bug.cgi?id=2269211	external
https://bugzilla.redhat.com/show_bug.cgi?id=2270084	external
https://bugzilla.redhat.com/show_bug.cgi?id=2270100	external
https://bugzilla.redhat.com/show_bug.cgi?id=2270700	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271686	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271688	external
https://bugzilla.redhat.com/show_bug.cgi?id=2272782	external
https://bugzilla.redhat.com/show_bug.cgi?id=2272795	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273109	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273117	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273174	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273236	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273242	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273247	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273268	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273427	external
https://bugzilla.redhat.com/show_bug.cgi?id=2273654	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275565	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275573	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275580	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275694	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275711	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275744	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275748	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275761	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275928	external
https://bugzilla.redhat.com/show_bug.cgi?id=2277166	external
https://bugzilla.redhat.com/show_bug.cgi?id=2277238	external
https://bugzilla.redhat.com/show_bug.cgi?id=2277840	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278176	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278178	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278182	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278218	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278256	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278258	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278277	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278279	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278380	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278484	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278515	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278535	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278539	external
https://bugzilla.redhat.com/show_bug.cgi?id=2278989	external
https://bugzilla.redhat.com/show_bug.cgi?id=2280440	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281054	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281133	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281149	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281189	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281190	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281207	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281215	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281221	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281235	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281268	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281326	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281360	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281510	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281519	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281636	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281641	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281664	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281667	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281672	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281675	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281682	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281725	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281752	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281758	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281819	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281821	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281833	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281938	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281949	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281968	external
https://bugzilla.redhat.com/show_bug.cgi?id=2281989	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282328	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282373	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282479	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282553	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282615	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282623	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282640	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282642	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282645	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282690	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282717	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282719	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282727	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282742	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282743	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282744	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282759	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282763	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282766	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282772	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282780	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282887	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282896	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282923	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282925	external
https://bugzilla.redhat.com/show_bug.cgi?id=2282950	external
https://bugzilla.redhat.com/show_bug.cgi?id=2283401	external
https://bugzilla.redhat.com/show_bug.cgi?id=2283894	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284400	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284417	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284421	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284465	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284474	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284477	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284488	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284496	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284500	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284513	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284519	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284539	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284541	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284556	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284571	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284590	external
https://bugzilla.redhat.com/show_bug.cgi?id=2284625	external
https://bugzilla.redhat.com/show_bug.cgi?id=2290408	external
https://bugzilla.redhat.com/show_bug.cgi?id=2292331	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293078	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293250	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293276	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293312	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293316	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293348	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293367	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293371	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293383	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293418	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293420	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293444	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293461	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293653	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293657	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293684	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293687	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293700	external
https://bugzilla.redhat.com/show_bug.cgi?id=2293711	external
https://bugzilla.redhat.com/show_bug.cgi?id=2294274	external
https://bugzilla.redhat.com/show_bug.cgi?id=2295914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2296067	external
https://bugzilla.redhat.com/show_bug.cgi?id=2297056	external
https://bugzilla.redhat.com/show_bug.cgi?id=2297474	external
https://bugzilla.redhat.com/show_bug.cgi?id=2297511	external
https://bugzilla.redhat.com/show_bug.cgi?id=2297558	external
https://bugzilla.redhat.com/show_bug.cgi?id=2298108	external
https://issues.redhat.com/browse/RHEL-36222	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-53597	self
https://bugzilla.redhat.com/show_bug.cgi?id=2401466	external
https://www.cve.org/CVERecord?id=CVE-2023-53597	external
https://nvd.nist.gov/vuln/detail/CVE-2023-53597	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://access.redhat.com/security/cve/CVE-2023-54114	self
https://bugzilla.redhat.com/show_bug.cgi?id=2425196	external
https://www.cve.org/CVERecord?id=CVE-2023-54114	external
https://nvd.nist.gov/vuln/detail/CVE-2023-54114	external
https://lore.kernel.org/linux-cve-announce/202512…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated el8/flatpak-sdk container image is now available for Red Hat Enterprise Linux 8.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The el8/flatpak-sdk container image has been updated for Red Hat Enterprise Linux 8 to address the following security advisory: RHSA-2024:5101 (see References)\n\nUsers of el8/flatpak-sdk container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.\n\nYou can find images updated by this advisory in Red Hat Container Catalog (see References).",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHBA-2024:5207",
        "url": "https://access.redhat.com/errata/RHBA-2024:5207"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/errata/RHSA-2024:5101",
        "url": "https://access.redhat.com/errata/RHSA-2024:5101"
      },
      {
        "category": "external",
        "summary": "https://catalog.redhat.com/software/containers/registry/registry.access.redhat.com/repository/el8/flatpak-sdk",
        "url": "https://catalog.redhat.com/software/containers/registry/registry.access.redhat.com/repository/el8/flatpak-sdk"
      },
      {
        "category": "external",
        "summary": "2263879",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263879"
      },
      {
        "category": "external",
        "summary": "2265645",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265645"
      },
      {
        "category": "external",
        "summary": "2265650",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265650"
      },
      {
        "category": "external",
        "summary": "2265797",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265797"
      },
      {
        "category": "external",
        "summary": "2266341",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266341"
      },
      {
        "category": "external",
        "summary": "2266347",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266347"
      },
      {
        "category": "external",
        "summary": "2266497",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266497"
      },
      {
        "category": "external",
        "summary": "2266594",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266594"
      },
      {
        "category": "external",
        "summary": "2267787",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267787"
      },
      {
        "category": "external",
        "summary": "2268118",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268118"
      },
      {
        "category": "external",
        "summary": "2269070",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269070"
      },
      {
        "category": "external",
        "summary": "2269211",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269211"
      },
      {
        "category": "external",
        "summary": "2270084",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270084"
      },
      {
        "category": "external",
        "summary": "2270100",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270100"
      },
      {
        "category": "external",
        "summary": "2270700",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270700"
      },
      {
        "category": "external",
        "summary": "2271686",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271686"
      },
      {
        "category": "external",
        "summary": "2271688",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271688"
      },
      {
        "category": "external",
        "summary": "2272782",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272782"
      },
      {
        "category": "external",
        "summary": "2272795",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272795"
      },
      {
        "category": "external",
        "summary": "2273109",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273109"
      },
      {
        "category": "external",
        "summary": "2273117",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273117"
      },
      {
        "category": "external",
        "summary": "2273174",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273174"
      },
      {
        "category": "external",
        "summary": "2273236",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273236"
      },
      {
        "category": "external",
        "summary": "2273242",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273242"
      },
      {
        "category": "external",
        "summary": "2273247",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273247"
      },
      {
        "category": "external",
        "summary": "2273268",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273268"
      },
      {
        "category": "external",
        "summary": "2273427",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273427"
      },
      {
        "category": "external",
        "summary": "2273654",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273654"
      },
      {
        "category": "external",
        "summary": "2275565",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275565"
      },
      {
        "category": "external",
        "summary": "2275573",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275573"
      },
      {
        "category": "external",
        "summary": "2275580",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275580"
      },
      {
        "category": "external",
        "summary": "2275694",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275694"
      },
      {
        "category": "external",
        "summary": "2275711",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275711"
      },
      {
        "category": "external",
        "summary": "2275744",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275744"
      },
      {
        "category": "external",
        "summary": "2275748",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275748"
      },
      {
        "category": "external",
        "summary": "2275761",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275761"
      },
      {
        "category": "external",
        "summary": "2275928",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275928"
      },
      {
        "category": "external",
        "summary": "2277166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277166"
      },
      {
        "category": "external",
        "summary": "2277238",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277238"
      },
      {
        "category": "external",
        "summary": "2277840",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277840"
      },
      {
        "category": "external",
        "summary": "2278176",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278176"
      },
      {
        "category": "external",
        "summary": "2278178",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278178"
      },
      {
        "category": "external",
        "summary": "2278182",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278182"
      },
      {
        "category": "external",
        "summary": "2278218",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278218"
      },
      {
        "category": "external",
        "summary": "2278256",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278256"
      },
      {
        "category": "external",
        "summary": "2278258",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278258"
      },
      {
        "category": "external",
        "summary": "2278277",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278277"
      },
      {
        "category": "external",
        "summary": "2278279",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278279"
      },
      {
        "category": "external",
        "summary": "2278380",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278380"
      },
      {
        "category": "external",
        "summary": "2278484",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278484"
      },
      {
        "category": "external",
        "summary": "2278515",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278515"
      },
      {
        "category": "external",
        "summary": "2278535",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278535"
      },
      {
        "category": "external",
        "summary": "2278539",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278539"
      },
      {
        "category": "external",
        "summary": "2278989",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278989"
      },
      {
        "category": "external",
        "summary": "2280440",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280440"
      },
      {
        "category": "external",
        "summary": "2281054",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281054"
      },
      {
        "category": "external",
        "summary": "2281133",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281133"
      },
      {
        "category": "external",
        "summary": "2281149",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281149"
      },
      {
        "category": "external",
        "summary": "2281189",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281189"
      },
      {
        "category": "external",
        "summary": "2281190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281190"
      },
      {
        "category": "external",
        "summary": "2281207",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281207"
      },
      {
        "category": "external",
        "summary": "2281215",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281215"
      },
      {
        "category": "external",
        "summary": "2281221",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281221"
      },
      {
        "category": "external",
        "summary": "2281235",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281235"
      },
      {
        "category": "external",
        "summary": "2281268",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281268"
      },
      {
        "category": "external",
        "summary": "2281326",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281326"
      },
      {
        "category": "external",
        "summary": "2281360",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281360"
      },
      {
        "category": "external",
        "summary": "2281510",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281510"
      },
      {
        "category": "external",
        "summary": "2281519",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281519"
      },
      {
        "category": "external",
        "summary": "2281636",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281636"
      },
      {
        "category": "external",
        "summary": "2281641",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281641"
      },
      {
        "category": "external",
        "summary": "2281664",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281664"
      },
      {
        "category": "external",
        "summary": "2281667",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281667"
      },
      {
        "category": "external",
        "summary": "2281672",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281672"
      },
      {
        "category": "external",
        "summary": "2281675",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281675"
      },
      {
        "category": "external",
        "summary": "2281682",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281682"
      },
      {
        "category": "external",
        "summary": "2281725",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281725"
      },
      {
        "category": "external",
        "summary": "2281752",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281752"
      },
      {
        "category": "external",
        "summary": "2281758",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281758"
      },
      {
        "category": "external",
        "summary": "2281819",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281819"
      },
      {
        "category": "external",
        "summary": "2281821",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281821"
      },
      {
        "category": "external",
        "summary": "2281833",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281833"
      },
      {
        "category": "external",
        "summary": "2281938",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281938"
      },
      {
        "category": "external",
        "summary": "2281949",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281949"
      },
      {
        "category": "external",
        "summary": "2281968",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281968"
      },
      {
        "category": "external",
        "summary": "2281989",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281989"
      },
      {
        "category": "external",
        "summary": "2282328",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282328"
      },
      {
        "category": "external",
        "summary": "2282373",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282373"
      },
      {
        "category": "external",
        "summary": "2282479",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282479"
      },
      {
        "category": "external",
        "summary": "2282553",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282553"
      },
      {
        "category": "external",
        "summary": "2282615",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282615"
      },
      {
        "category": "external",
        "summary": "2282623",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282623"
      },
      {
        "category": "external",
        "summary": "2282640",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282640"
      },
      {
        "category": "external",
        "summary": "2282642",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282642"
      },
      {
        "category": "external",
        "summary": "2282645",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282645"
      },
      {
        "category": "external",
        "summary": "2282690",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282690"
      },
      {
        "category": "external",
        "summary": "2282717",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282717"
      },
      {
        "category": "external",
        "summary": "2282719",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282719"
      },
      {
        "category": "external",
        "summary": "2282727",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282727"
      },
      {
        "category": "external",
        "summary": "2282742",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282742"
      },
      {
        "category": "external",
        "summary": "2282743",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282743"
      },
      {
        "category": "external",
        "summary": "2282744",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282744"
      },
      {
        "category": "external",
        "summary": "2282759",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282759"
      },
      {
        "category": "external",
        "summary": "2282763",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282763"
      },
      {
        "category": "external",
        "summary": "2282766",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282766"
      },
      {
        "category": "external",
        "summary": "2282772",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282772"
      },
      {
        "category": "external",
        "summary": "2282780",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282780"
      },
      {
        "category": "external",
        "summary": "2282887",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282887"
      },
      {
        "category": "external",
        "summary": "2282896",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282896"
      },
      {
        "category": "external",
        "summary": "2282923",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282923"
      },
      {
        "category": "external",
        "summary": "2282925",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282925"
      },
      {
        "category": "external",
        "summary": "2282950",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282950"
      },
      {
        "category": "external",
        "summary": "2283401",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283401"
      },
      {
        "category": "external",
        "summary": "2283894",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283894"
      },
      {
        "category": "external",
        "summary": "2284400",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284400"
      },
      {
        "category": "external",
        "summary": "2284417",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284417"
      },
      {
        "category": "external",
        "summary": "2284421",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284421"
      },
      {
        "category": "external",
        "summary": "2284465",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284465"
      },
      {
        "category": "external",
        "summary": "2284474",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284474"
      },
      {
        "category": "external",
        "summary": "2284477",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284477"
      },
      {
        "category": "external",
        "summary": "2284488",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284488"
      },
      {
        "category": "external",
        "summary": "2284496",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284496"
      },
      {
        "category": "external",
        "summary": "2284500",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284500"
      },
      {
        "category": "external",
        "summary": "2284513",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284513"
      },
      {
        "category": "external",
        "summary": "2284519",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284519"
      },
      {
        "category": "external",
        "summary": "2284539",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284539"
      },
      {
        "category": "external",
        "summary": "2284541",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284541"
      },
      {
        "category": "external",
        "summary": "2284556",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284556"
      },
      {
        "category": "external",
        "summary": "2284571",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284571"
      },
      {
        "category": "external",
        "summary": "2284590",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284590"
      },
      {
        "category": "external",
        "summary": "2284625",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284625"
      },
      {
        "category": "external",
        "summary": "2290408",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290408"
      },
      {
        "category": "external",
        "summary": "2292331",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292331"
      },
      {
        "category": "external",
        "summary": "2293078",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293078"
      },
      {
        "category": "external",
        "summary": "2293250",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293250"
      },
      {
        "category": "external",
        "summary": "2293276",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293276"
      },
      {
        "category": "external",
        "summary": "2293312",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293312"
      },
      {
        "category": "external",
        "summary": "2293316",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293316"
      },
      {
        "category": "external",
        "summary": "2293348",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293348"
      },
      {
        "category": "external",
        "summary": "2293367",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293367"
      },
      {
        "category": "external",
        "summary": "2293371",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293371"
      },
      {
        "category": "external",
        "summary": "2293383",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293383"
      },
      {
        "category": "external",
        "summary": "2293418",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293418"
      },
      {
        "category": "external",
        "summary": "2293420",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293420"
      },
      {
        "category": "external",
        "summary": "2293444",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293444"
      },
      {
        "category": "external",
        "summary": "2293461",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293461"
      },
      {
        "category": "external",
        "summary": "2293653",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293653"
      },
      {
        "category": "external",
        "summary": "2293657",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293657"
      },
      {
        "category": "external",
        "summary": "2293684",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293684"
      },
      {
        "category": "external",
        "summary": "2293687",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293687"
      },
      {
        "category": "external",
        "summary": "2293700",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293700"
      },
      {
        "category": "external",
        "summary": "2293711",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293711"
      },
      {
        "category": "external",
        "summary": "2294274",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294274"
      },
      {
        "category": "external",
        "summary": "2295914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295914"
      },
      {
        "category": "external",
        "summary": "2296067",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296067"
      },
      {
        "category": "external",
        "summary": "2297056",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297056"
      },
      {
        "category": "external",
        "summary": "2297474",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297474"
      },
      {
        "category": "external",
        "summary": "2297511",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297511"
      },
      {
        "category": "external",
        "summary": "2297558",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297558"
      },
      {
        "category": "external",
        "summary": "2298108",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2298108"
      },
      {
        "category": "external",
        "summary": "RHEL-36222",
        "url": "https://issues.redhat.com/browse/RHEL-36222"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_5207.json"
      }
    ],
    "title": "Red Hat Bug Fix Advisory: updated el8/flatpak-sdk container image",
    "tracking": {
      "current_release_date": "2026-02-23T18:55:34+00:00",
      "generator": {
        "date": "2026-02-23T18:55:34+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.1"
        }
      },
      "id": "RHBA-2024:5207",
      "initial_release_date": "2024-08-12T07:51:37+00:00",
      "revision_history": [
        {
          "date": "2024-08-12T07:51:37+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-08-12T07:51:37+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-02-23T18:55:34+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                  "product_id": "AppStream-8.10.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64",
                "product": {
                  "name": "rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64",
                  "product_id": "rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438?arch=amd64\u0026repository_url=registry.redhat.io/rhel8/flatpak-sdk\u0026tag=el8-8100020240123120116.1723092933"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64"
        },
        "product_reference": "rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-53597",
      "cwe": {
        "id": "CWE-772",
        "name": "Missing Release of Resource after Effective Lifetime"
      },
      "discovery_date": "2025-10-04T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2401466"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix mid leak during reconnection after timeout threshold\n\nWhen the number of responses with status of STATUS_IO_TIMEOUT\nexceeds a specified threshold (NUM_STATUS_IO_TIMEOUT), we reconnect\nthe connection. But we do not return the mid, or the credits\nreturned for the mid, or reduce the number of in-flight requests.\n\nThis bug could result in the server-\u003ein_flight count to go bad,\nand also cause a leak in the mids.\n\nThis change moves the check to a few lines below where the\nresponse is decrypted, even of the response is read from the\ntransform header. This way, the code for returning the mids\ncan be reused.\n\nAlso, the cifs_reconnect was reconnecting just the transport\nconnection before. In case of multi-channel, this may not be\nwhat we want to do after several timeouts. Changed that to\nreconnect the session and the tree too.\n\nAlso renamed NUM_STATUS_IO_TIMEOUT to a more appropriate name\nMAX_STATUS_IO_TIMEOUT.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: cifs: fix mid leak during reconnection after timeout threshold",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-53597"
        },
        {
          "category": "external",
          "summary": "RHBZ#2401466",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401466"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-53597",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-53597"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-53597",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53597"
        },
        {
          "category": "external",
          "summary": "https://lore.kernel.org/linux-cve-announce/2025100429-CVE-2023-53597-e30c@gregkh/T",
          "url": "https://lore.kernel.org/linux-cve-announce/2025100429-CVE-2023-53597-e30c@gregkh/T"
        }
      ],
      "release_date": "2025-10-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-08-12T07:51:37+00:00",
          "details": "The Red Hat Enterprise Linux 8 container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2024:5207"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: cifs: fix mid leak during reconnection after timeout threshold"
    },
    {
      "cve": "CVE-2023-54114",
      "cwe": {
        "id": "CWE-253",
        "name": "Incorrect Check of Function Return Value"
      },
      "discovery_date": "2025-12-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2425196"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Linux kernel, specifically within its Network Service Header (NSH) module. A local attacker could exploit this vulnerability by sending specially crafted network packets, which would cause the system to crash. This issue, a type of Denial of Service (DoS), arises from an incorrect calculation during network packet processing, leading to a critical error in memory management.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Linux kernel: Denial of Service due to incorrect network packet processing in NSH module",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-54114"
        },
        {
          "category": "external",
          "summary": "RHBZ#2425196",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2425196"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-54114",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-54114"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-54114",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-54114"
        },
        {
          "category": "external",
          "summary": "https://lore.kernel.org/linux-cve-announce/2025122414-CVE-2023-54114-8362@gregkh/T",
          "url": "https://lore.kernel.org/linux-cve-announce/2025122414-CVE-2023-54114-8362@gregkh/T"
        }
      ],
      "release_date": "2025-12-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-08-12T07:51:37+00:00",
          "details": "The Red Hat Enterprise Linux 8 container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2024:5207"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:rhel8/flatpak-sdk@sha256:37a786d6f9ebeb1f63d0672026492ec9040bf6eb50253ea1b9dc7c3e03a8a438_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: Linux kernel: Denial of Service due to incorrect network packet processing in NSH module"
    }
  ]
}

CVE-2023-53597 (GCVE-0-2023-53597)

Vulnerability from cvelistv5 – Published: 2025-10-04 15:44 – Updated: 2026-05-23 15:29

Title

cifs: fix mid leak during reconnection after timeout threshold

Summary

Severity

No CVSS data available.

Assigner

Linux

References

4 references

URL	Tags
https://git.kernel.org/stable/c/df31d05f0678cdd07…
https://git.kernel.org/stable/c/c55901d381a22300c…
https://git.kernel.org/stable/c/57d25e9905c71133e…
https://git.kernel.org/stable/c/69cba9d3c1284e083…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 8e670f77c4a55013db6d23b962f9bf6673a5e7b6 , < df31d05f0678cdd0796ea19983a2b93edca18bb0 (git) Affected: 8e670f77c4a55013db6d23b962f9bf6673a5e7b6 , < c55901d381a22300c9922170e59704059f50977b (git) Affected: 8e670f77c4a55013db6d23b962f9bf6673a5e7b6 , < 57d25e9905c71133e201f6d06b56a3403d4ad433 (git) Affected: 8e670f77c4a55013db6d23b962f9bf6673a5e7b6 , < 69cba9d3c1284e0838ae408830a02c4a063104bc (git) Affected: fa6d7a5853f93efb088aba36af12cb1944156411 (git) Affected: 5.9.5 , < 5.10 (semver)
Linux	Linux	Affected: 5.10 Unaffected: 0 , < 5.10 (semver) Unaffected: 5.15.150 , ≤ 5.15.* (semver) Unaffected: 6.1.42 , ≤ 6.1.* (semver) Unaffected: 6.4.7 , ≤ 6.4.* (semver) Unaffected: 6.5 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/smb/client/connect.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "df31d05f0678cdd0796ea19983a2b93edca18bb0",
              "status": "affected",
              "version": "8e670f77c4a55013db6d23b962f9bf6673a5e7b6",
              "versionType": "git"
            },
            {
              "lessThan": "c55901d381a22300c9922170e59704059f50977b",
              "status": "affected",
              "version": "8e670f77c4a55013db6d23b962f9bf6673a5e7b6",
              "versionType": "git"
            },
            {
              "lessThan": "57d25e9905c71133e201f6d06b56a3403d4ad433",
              "status": "affected",
              "version": "8e670f77c4a55013db6d23b962f9bf6673a5e7b6",
              "versionType": "git"
            },
            {
              "lessThan": "69cba9d3c1284e0838ae408830a02c4a063104bc",
              "status": "affected",
              "version": "8e670f77c4a55013db6d23b962f9bf6673a5e7b6",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "fa6d7a5853f93efb088aba36af12cb1944156411",
              "versionType": "git"
            },
            {
              "lessThan": "5.10",
              "status": "affected",
              "version": "5.9.5",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/smb/client/connect.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.42",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.4.*",
              "status": "unaffected",
              "version": "6.4.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.5",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.42",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.4.7",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.5",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.9.5",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix mid leak during reconnection after timeout threshold\n\nWhen the number of responses with status of STATUS_IO_TIMEOUT\nexceeds a specified threshold (NUM_STATUS_IO_TIMEOUT), we reconnect\nthe connection. But we do not return the mid, or the credits\nreturned for the mid, or reduce the number of in-flight requests.\n\nThis bug could result in the server-\u003ein_flight count to go bad,\nand also cause a leak in the mids.\n\nThis change moves the check to a few lines below where the\nresponse is decrypted, even of the response is read from the\ntransform header. This way, the code for returning the mids\ncan be reused.\n\nAlso, the cifs_reconnect was reconnecting just the transport\nconnection before. In case of multi-channel, this may not be\nwhat we want to do after several timeouts. Changed that to\nreconnect the session and the tree too.\n\nAlso renamed NUM_STATUS_IO_TIMEOUT to a more appropriate name\nMAX_STATUS_IO_TIMEOUT."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-23T15:29:56.902Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/df31d05f0678cdd0796ea19983a2b93edca18bb0"
        },
        {
          "url": "https://git.kernel.org/stable/c/c55901d381a22300c9922170e59704059f50977b"
        },
        {
          "url": "https://git.kernel.org/stable/c/57d25e9905c71133e201f6d06b56a3403d4ad433"
        },
        {
          "url": "https://git.kernel.org/stable/c/69cba9d3c1284e0838ae408830a02c4a063104bc"
        }
      ],
      "title": "cifs: fix mid leak during reconnection after timeout threshold",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-53597",
    "datePublished": "2025-10-04T15:44:09.616Z",
    "dateReserved": "2025-10-04T15:40:38.479Z",
    "dateUpdated": "2026-05-23T15:29:56.902Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2023-54114 (GCVE-0-2023-54114)

Vulnerability from cvelistv5 – Published: 2025-12-24 13:06 – Updated: 2026-05-11 19:55

Title

net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()

Summary

In the Linux kernel, the following vulnerability has been resolved: net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment() As the call trace shows, skb_panic was caused by wrong skb->mac_header in nsh_gso_segment(): invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI CPU: 3 PID: 2737 Comm: syz Not tainted 6.3.0-next-20230505 #1 RIP: 0010:skb_panic+0xda/0xe0 call Trace: skb_push+0x91/0xa0 nsh_gso_segment+0x4f3/0x570 skb_mac_gso_segment+0x19e/0x270 __skb_gso_segment+0x1e8/0x3c0 validate_xmit_skb+0x452/0x890 validate_xmit_skb_list+0x99/0xd0 sch_direct_xmit+0x294/0x7c0 __dev_queue_xmit+0x16f0/0x1d70 packet_xmit+0x185/0x210 packet_snd+0xc15/0x1170 packet_sendmsg+0x7b/0xa0 sock_sendmsg+0x14f/0x160 The root cause is: nsh_gso_segment() use skb->network_header - nhoff to reset mac_header in skb_gso_error_unwind() if inner-layer protocol gso fails. However, skb->network_header may be reset by inner-layer protocol gso function e.g. mpls_gso_segment. skb->mac_header reset by the inaccurate network_header will be larger than skb headroom. nsh_gso_segment nhoff = skb->network_header - skb->mac_header; __skb_pull(skb,nsh_len) skb_mac_gso_segment mpls_gso_segment skb_reset_network_header(skb);//skb->network_header+=nsh_len return -EINVAL; skb_gso_error_unwind skb_push(skb, nsh_len); skb->mac_header = skb->network_header - nhoff; // skb->mac_header > skb->headroom, cause skb_push panic Use correct mac_offset to restore mac_header and get rid of nhoff.

Severity

No CVSS data available.

Assigner

Linux

References

8 references

URL	Tags
https://git.kernel.org/stable/c/2f88c8d38ecf5ed02…
https://git.kernel.org/stable/c/d2309e0cb27b6871b…
https://git.kernel.org/stable/c/435855b0831b351cb…
https://git.kernel.org/stable/c/02b20e0bc0c262853…
https://git.kernel.org/stable/c/cdd8160dcda1fed20…
https://git.kernel.org/stable/c/6fbedf987b6b8ed54…
https://git.kernel.org/stable/c/cb38e62922aa39917…
https://git.kernel.org/stable/c/c83b49383b595be50…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < 2f88c8d38ecf5ed0273f99a067246899ba499eb2 (git) Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < d2309e0cb27b6871b273fbc1725e93be62570d86 (git) Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < 435855b0831b351cb72cb38369ee33122ce9574c (git) Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < 02b20e0bc0c2628539e9e518dc342787c3332de2 (git) Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < cdd8160dcda1fed2028a5f96575a84afc23aff7d (git) Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < 6fbedf987b6b8ed54a50e2205d998eb2c8be72f9 (git) Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < cb38e62922aa3991793344b5a5870e7291c74a44 (git) Affected: c411ed854584a71b0e86ac3019b60e4789d88086 , < c83b49383b595be50647f0c764a48c78b5f3c4f8 (git)
Linux	Linux	Affected: 4.14 Unaffected: 0 , < 4.14 (semver) Unaffected: 4.14.316 , ≤ 4.14.* (semver) Unaffected: 4.19.284 , ≤ 4.19.* (semver) Unaffected: 5.4.244 , ≤ 5.4.* (semver) Unaffected: 5.10.181 , ≤ 5.10.* (semver) Unaffected: 5.15.113 , ≤ 5.15.* (semver) Unaffected: 6.1.30 , ≤ 6.1.* (semver) Unaffected: 6.3.4 , ≤ 6.3.* (semver) Unaffected: 6.4 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/nsh/nsh.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "2f88c8d38ecf5ed0273f99a067246899ba499eb2",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            },
            {
              "lessThan": "d2309e0cb27b6871b273fbc1725e93be62570d86",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            },
            {
              "lessThan": "435855b0831b351cb72cb38369ee33122ce9574c",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            },
            {
              "lessThan": "02b20e0bc0c2628539e9e518dc342787c3332de2",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            },
            {
              "lessThan": "cdd8160dcda1fed2028a5f96575a84afc23aff7d",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            },
            {
              "lessThan": "6fbedf987b6b8ed54a50e2205d998eb2c8be72f9",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            },
            {
              "lessThan": "cb38e62922aa3991793344b5a5870e7291c74a44",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            },
            {
              "lessThan": "c83b49383b595be50647f0c764a48c78b5f3c4f8",
              "status": "affected",
              "version": "c411ed854584a71b0e86ac3019b60e4789d88086",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/nsh/nsh.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.14"
            },
            {
              "lessThan": "4.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.316",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.284",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.244",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.181",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.113",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.30",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.3.*",
              "status": "unaffected",
              "version": "6.3.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.4",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.316",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.284",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.244",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.181",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.113",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.30",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.3.4",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.4",
                  "versionStartIncluding": "4.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()\n\nAs the call trace shows, skb_panic was caused by wrong skb-\u003emac_header\nin nsh_gso_segment():\n\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 3 PID: 2737 Comm: syz Not tainted 6.3.0-next-20230505 #1\nRIP: 0010:skb_panic+0xda/0xe0\ncall Trace:\n skb_push+0x91/0xa0\n nsh_gso_segment+0x4f3/0x570\n skb_mac_gso_segment+0x19e/0x270\n __skb_gso_segment+0x1e8/0x3c0\n validate_xmit_skb+0x452/0x890\n validate_xmit_skb_list+0x99/0xd0\n sch_direct_xmit+0x294/0x7c0\n __dev_queue_xmit+0x16f0/0x1d70\n packet_xmit+0x185/0x210\n packet_snd+0xc15/0x1170\n packet_sendmsg+0x7b/0xa0\n sock_sendmsg+0x14f/0x160\n\nThe root cause is:\nnsh_gso_segment() use skb-\u003enetwork_header - nhoff to reset mac_header\nin skb_gso_error_unwind() if inner-layer protocol gso fails.\nHowever, skb-\u003enetwork_header may be reset by inner-layer protocol\ngso function e.g. mpls_gso_segment. skb-\u003emac_header reset by the\ninaccurate network_header will be larger than skb headroom.\n\nnsh_gso_segment\n    nhoff = skb-\u003enetwork_header - skb-\u003emac_header;\n    __skb_pull(skb,nsh_len)\n    skb_mac_gso_segment\n        mpls_gso_segment\n            skb_reset_network_header(skb);//skb-\u003enetwork_header+=nsh_len\n            return -EINVAL;\n    skb_gso_error_unwind\n        skb_push(skb, nsh_len);\n        skb-\u003emac_header = skb-\u003enetwork_header - nhoff;\n        // skb-\u003emac_header \u003e skb-\u003eheadroom, cause skb_push panic\n\nUse correct mac_offset to restore mac_header and get rid of nhoff."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T19:55:44.834Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/2f88c8d38ecf5ed0273f99a067246899ba499eb2"
        },
        {
          "url": "https://git.kernel.org/stable/c/d2309e0cb27b6871b273fbc1725e93be62570d86"
        },
        {
          "url": "https://git.kernel.org/stable/c/435855b0831b351cb72cb38369ee33122ce9574c"
        },
        {
          "url": "https://git.kernel.org/stable/c/02b20e0bc0c2628539e9e518dc342787c3332de2"
        },
        {
          "url": "https://git.kernel.org/stable/c/cdd8160dcda1fed2028a5f96575a84afc23aff7d"
        },
        {
          "url": "https://git.kernel.org/stable/c/6fbedf987b6b8ed54a50e2205d998eb2c8be72f9"
        },
        {
          "url": "https://git.kernel.org/stable/c/cb38e62922aa3991793344b5a5870e7291c74a44"
        },
        {
          "url": "https://git.kernel.org/stable/c/c83b49383b595be50647f0c764a48c78b5f3c4f8"
        }
      ],
      "title": "net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-54114",
    "datePublished": "2025-12-24T13:06:36.214Z",
    "dateReserved": "2025-12-24T13:02:52.519Z",
    "dateUpdated": "2026-05-11T19:55:44.834Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHBA-2024:5207

CVE-2023-53597 (GCVE-0-2023-53597)

CVE-2023-54114 (GCVE-0-2023-54114)

Tags

Sightings

Nomenclature