发布于3月6日3月6日 Members Debian: CVE-2023-52846: linux -- security update Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 05/21/2024 Created 07/31/2024 Added 07/30/2024 Modified 01/30/2025 Description In the Linux kernel, the following vulnerability has been resolved: hsr: Prevent use after free in prp_create_tagged_frame() The prp_fill_rct() function can fail.In that situation, it frees the skb and returns NULL.Meanwhile on the success path, it returns the original skb.So it's straight forward to fix bug by using the returned value. Solution(s) debian-upgrade-linux References https://attackerkb.com/topics/cve-2023-52846 CVE - 2023-52846
