VIR Vulnerability Intelligence Relay

CVE-2023-52578

medium
Published 2024-04-30 · Modified 2024-06-05
CVSS v3
CVSS v2
VIR risk
5.5

Description

In the Linux kernel, the following vulnerability has been resolved: net: bridge: use DEV_STATS_INC() syzbot/KCSAN reported data-races in br_handle_frame_finish() [1] This function can run from multiple cpus without mutual exclusion. Adopt SMP safe DEV_STATS_INC() to update dev->stats fields. Handles updates to dev->stats.tx_dropped while we are at it. [1] BUG: KCSAN: data-race in br_handle_frame_finish / br_handle_frame_finish read-write to 0xffff8881374b2178 of 8 bytes by interrupt on cpu 1: br_handle_frame_finish+0xd4f/0xef0 net/bridge/br_input.c:189 br_nf_hook_thresh+0x1ed/0x220 br_nf_pre_routing_finish_ipv6+0x50f/0x540 NF_HOOK include/linux/netfilter.h:304 [inline] br_nf_pre_routing_ipv6+0x1e3/0x2a0 net/bridge/br_netfilter_ipv6.c:178 br_nf_pre_routing+0x526/0xba0 net/bridge/br_netfilter_hooks.c:508 nf_hook_entry_hookfn include/linux/netfilter.h:144 [inline] nf_hook_bridge_pre net/bridge/br_input.c:272 [inline] br_handle_frame+0x4c9/0x940 net/bridge/br_input.c:417 __netif_receive_skb_core+0xa8a/0x21e0 net/core/dev.c:5417 __netif_receive_skb_one_core net/core/dev.c:5521 [inline] __netif_receive_skb+0x57/0x1b0 net/core/dev.c:5637 process_backlog+0x21f/0x380 net/core/dev.c:5965 __napi_poll+0x60/0x3b0 net/core/dev.c:6527 napi_poll net/core/dev.c:6594 [inline] net_rx_action+0x32b/0x750 net/core/dev.c:6727 __do_softirq+0xc1/0x265 kernel/softirq.c:553 run_ksoftirqd+0x17/0x20 kernel/softirq.c:921 smpboot_thread_fn+0x30a/0x4a0 kernel/smpboot.c:164 kthread+0x1d7/0x210 kernel/kthread.c:388 ret_from_fork+0x48/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304 read-write to 0xffff8881374b2178 of 8 bytes by interrupt on cpu 0: br_handle_frame_finish+0xd4f/0xef0 net/bridge/br_input.c:189 br_nf_hook_thresh+0x1ed/0x220 br_nf_pre_routing_finish_ipv6+0x50f/0x540 NF_HOOK include/linux/netfilter.h:304 [inline] br_nf_pre_routing_ipv6+0x1e3/0x2a0 net/bridge/br_netfilter_ipv6.c:178 br_nf_pre_routing+0x526/0xba0 net/bridge/br_netfilter_hooks.c:508 nf_hook_entry_hookfn include/linux/netfilter.h:144 [inline] nf_hook_bridge_pre net/bridge/br_input.c:272 [inline] br_handle_frame+0x4c9/0x940 net/bridge/br_input.c:417 __netif_receive_skb_core+0xa8a/0x21e0 net/core/dev.c:5417 __netif_receive_skb_one_core net/core/dev.c:5521 [inline] __netif_receive_skb+0x57/0x1b0 net/core/dev.c:5637 process_backlog+0x21f/0x380 net/core/dev.c:5965 __napi_poll+0x60/0x3b0 net/core/dev.c:6527 napi_poll net/core/dev.c:6594 [inline] net_rx_action+0x32b/0x750 net/core/dev.c:6727 __do_softirq+0xc1/0x265 kernel/softirq.c:553 do_softirq+0x5e/0x90 kernel/softirq.c:454 __local_bh_enable_ip+0x64/0x70 kernel/softirq.c:381 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] batadv_tt_local_purge+0x1a8/0x1f0 net/batman-adv/translation-table.c:1356 batadv_tt_purge+0x2b/0x630 net/batman-adv/translation-table.c:3560 process_one_work kernel/workqueue.c:2630 [inline] process_scheduled_works+0x5b8/0xa30 kernel/workqueue.c:2703 worker_thread+0x525/0x730 kernel/workqueue.c:2784 kthread+0x1d7/0x210 kernel/kthread.c:388 ret_from_fork+0x48/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304 value changed: 0x00000000000d7190 -> 0x00000000000d7191 Reported by Kernel Concurrency Sanitizer on: CPU: 0 PID: 14848 Comm: kworker/u4:11 Not tainted 6.6.0-rc1-syzkaller-00236-gad8a69f361b9 #0

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2024-3627.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2024:3627

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-2394.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2270883

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2270118

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2269217

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2269189

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267795

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267788

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267761

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267760

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267750

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267695

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267041

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265653

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265645

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265520

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265519

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265518

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265517

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265285

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2262127

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2262126

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2260005

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2258518

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2258013

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2257682

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2256822

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2256490

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2255498

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2255283

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2254982

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2254961

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2253632

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2253034

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2252731

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2250043

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2246980

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2244720

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2239848

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2239845

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2231410

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2226788

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2226787

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2226777

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2221702

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2221463

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2221039

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2219359

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2218332

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2213132

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2210024

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2188102

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2185519

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2177759

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2151959

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2133452

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2049700

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/1918601

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2024-3618.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278537

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278431

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278417

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278409

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278398

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278356

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278314

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278268

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278240

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278237

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2278169

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2275777

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2275707

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2275666

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2275655

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2275645

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2274624

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2273262

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2273260

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2273223

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2273094

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2273092

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2272791

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2272780

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2271476

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2271469

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2270881

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2270879

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2270080

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2269856

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2269213

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268317

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268315

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268309

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268293

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268291

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267804

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267797

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267789

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267758

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267724

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267705

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267509

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267355

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267185

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2267038

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2266841

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2266746

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2266446

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2266296

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265833

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265654

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265646

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2265271

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2263875

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2257406

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2250843

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2024:3618

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2023-52578

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2023-52578.html

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:3618

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:3627

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:2394

OS impact
OSVersionStatusFixed in
redhat rhel9fixed
rockylinux rocky8fixed
suse slesaffected
debian debianbookwormfixed6.1.64-1
debian debianbullseyefixed5.10.205-1
debian debianforkyfixed6.5.6-1
debian debiansidfixed6.5.6-1
debian debiantrixiefixed6.5.6-1
almalinux almalinux8fixedkernel-abi-stablelists-4.18.0-553.5.1.el8_10.noarch.rpm
almalinux almalinux9fixedkernel-doc-5.14.0-427.13.1.el9_4.noarch.rpm

References

Verify integrity in audit chain (admin only). AS-IS.