CVE-2023-6535 Information

Description

A flaw was found in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP leading the NVMe driver to a NULL pointer dereference in the NVMe driver causing kernel panic and a denial of service.

Reference

https://access.redhat.com/errata/RHSA-2024:0723 https://access.redhat.com/errata/RHSA-2024:0724 https://access.redhat.com/errata/RHSA-2024:0725 https://access.redhat.com/security/cve/CVE-2023-6535 https://bugzilla.redhat.com/show_bug.cgi?id=2254053