CVE-2023-52997
ipv4: prevent potential spectre v1 gadget in ip_metrics_convert()
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in ip_metrics_convert() if (!type) continue; if (type > RTAX_MAX) return -EINVAL; ... metrics[type - 1] = val; @type being used as an array index, we need to prevent cpu speculation or risk leaking kernel memory content.
| Vendor | linux |
| Product | linux |
| Ecosystems | |
| Industries | Technology |
| Published | Mar 27, 2025 |
| Last Updated | May 11, 2026 |
Stay Ahead of the Next One
Get instant alerts for linux linux
Be the first to know when new unknown vulnerabilities affecting linux linux are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Linux / Linux
6cf9dfd3bd62edfff69f11c0f111bc261166e4c7 < ef050cf5fb70d995a0d03244e25179b7c66a924a 6cf9dfd3bd62edfff69f11c0f111bc261166e4c7 < 746db9ec1e672eee13965625ddac0d97e16fa20c 6cf9dfd3bd62edfff69f11c0f111bc261166e4c7 < 34c6142f0df9cd75cba5a7aa9df0960d2854b415 6cf9dfd3bd62edfff69f11c0f111bc261166e4c7 < d50e7348b44f1e046121ff5be01b7fb6978a1149 6cf9dfd3bd62edfff69f11c0f111bc261166e4c7 < 6850fe301d015a7d2012d1de8caf43dafb7cc2f6 6cf9dfd3bd62edfff69f11c0f111bc261166e4c7 < 1d1d63b612801b3f0a39b7d4467cad0abd60e5c8
Linux / Linux
4.3
References
git.kernel.org: https://git.kernel.org/stable/c/ef050cf5fb70d995a0d03244e25179b7c66a924a git.kernel.org: https://git.kernel.org/stable/c/746db9ec1e672eee13965625ddac0d97e16fa20c git.kernel.org: https://git.kernel.org/stable/c/34c6142f0df9cd75cba5a7aa9df0960d2854b415 git.kernel.org: https://git.kernel.org/stable/c/d50e7348b44f1e046121ff5be01b7fb6978a1149 git.kernel.org: https://git.kernel.org/stable/c/6850fe301d015a7d2012d1de8caf43dafb7cc2f6 git.kernel.org: https://git.kernel.org/stable/c/1d1d63b612801b3f0a39b7d4467cad0abd60e5c8