Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service or privilege escalation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 缓冲区错误漏洞
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 6.3.7之前版本存在安全漏洞,该漏洞源于net/sched/cls_flower.c中的fl_set_geneve_opt有问题,允许通过 TCA_FLOWER_KEY_ENC_OPTS_GENEVE 数据包越界写入代码,从而导致拒绝服务或权限升级。
CVSS Information
N/A
Vulnerability Type
N/A