CVE-2023-3812 Information

Description

An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on the system.

Reference

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=363a5328f4b0 https://bugzilla.redhat.com/show_bug.cgi?id=2224048 https://access.redhat.com/security/cve/CVE-2023-3812