发布于3月6日3月6日 Members Red Hat: CVE-2023-1390: remote DoS in TIPC kernel module (Multiple Advisories) Severity 8 CVSS (AV:N/AC:L/Au:N/C:N/I:N/A:C) Published 03/16/2023 Created 03/23/2023 Added 03/22/2023 Modified 01/28/2025 Description A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipc_link_xmit() hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in the CPU utilization for the system to instantly spike to 100%, causing a denial of service condition. Solution(s) redhat-upgrade-kernel redhat-upgrade-kernel-rt References CVE-2023-1390 RHSA-2021:1578 RHSA-2021:1739
