Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

017 - Ir a la línea de ayuda en Ciberseguridad    Ir a Agenda     Ir a Sala de prensa     Ir a suscripción de boletines

Ir al buscador

CVE-2023-53312

Gravedad:
Pendiente de análisis
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
16/09/2025
Última modificación:
17/09/2025

Descripción

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> net: fix net_dev_start_xmit trace event vs skb_transport_offset()<br /> <br /> After blamed commit, we must be more careful about using<br /> skb_transport_offset(), as reminded us by syzbot:<br /> <br /> WARNING: CPU: 0 PID: 10 at include/linux/skbuff.h:2868 skb_transport_offset include/linux/skbuff.h:2977 [inline]<br /> WARNING: CPU: 0 PID: 10 at include/linux/skbuff.h:2868 perf_trace_net_dev_start_xmit+0x89a/0xce0 include/trace/events/net.h:14<br /> Modules linked in:<br /> CPU: 0 PID: 10 Comm: kworker/u4:1 Not tainted 6.1.30-syzkaller #0<br /> Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023<br /> Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet<br /> RIP: 0010:skb_transport_header include/linux/skbuff.h:2868 [inline]<br /> RIP: 0010:skb_transport_offset include/linux/skbuff.h:2977 [inline]<br /> RIP: 0010:perf_trace_net_dev_start_xmit+0x89a/0xce0 include/trace/events/net.h:14<br /> Code: 8b 04 25 28 00 00 00 48 3b 84 24 c0 00 00 00 0f 85 4e 04 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc e8 56 22 01 fd 0b e9 f6 fc ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 86 f9 ff<br /> RSP: 0018:ffffc900002bf700 EFLAGS: 00010293<br /> RAX: ffffffff8485d8ca RBX: 000000000000ffff RCX: ffff888100914280<br /> RDX: 0000000000000000 RSI: 000000000000ffff RDI: 000000000000ffff<br /> RBP: ffffc900002bf818 R08: ffffffff8485d5b6 R09: fffffbfff0f8fb5e<br /> R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff110217d8f67<br /> R13: ffff88810bec7b3a R14: dffffc0000000000 R15: dffffc0000000000<br /> FS: 0000000000000000(0000) GS:ffff8881f6a00000(0000) knlGS:0000000000000000<br /> CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033<br /> CR2: 00007f96cf6d52f0 CR3: 000000012224c000 CR4: 0000000000350ef0<br /> Call Trace:<br /> <br /> [] trace_net_dev_start_xmit include/trace/events/net.h:14 [inline]<br /> [] xmit_one net/core/dev.c:3643 [inline]<br /> [] dev_hard_start_xmit+0x705/0x980 net/core/dev.c:3660<br /> [] __dev_queue_xmit+0x16b2/0x3370 net/core/dev.c:4324<br /> [] dev_queue_xmit include/linux/netdevice.h:3030 [inline]<br /> [] batadv_send_skb_packet+0x3f3/0x680 net/batman-adv/send.c:108<br /> [] batadv_send_broadcast_skb+0x24/0x30 net/batman-adv/send.c:127<br /> [] batadv_iv_ogm_send_to_if net/batman-adv/bat_iv_ogm.c:393 [inline]<br /> [] batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:421 [inline]<br /> [] batadv_iv_send_outstanding_bat_ogm_packet+0x69a/0x840 net/batman-adv/bat_iv_ogm.c:1701<br /> [] process_one_work+0x8ac/0x1170 kernel/workqueue.c:2289<br /> [] worker_thread+0xaa8/0x12d0 kernel/workqueue.c:2436

Impacto

Referencias a soluciones, herramientas e información