What is the severity of CVE-2023-52923?

The severity of CVE-2023-52923 is categorized as low, focusing on enhancing the garbage collection within the Linux kernel.

How do I fix CVE-2023-52923?

To fix CVE-2023-52923, update your Linux kernel to the latest stable version that includes the patch for this vulnerability.

What systems are affected by CVE-2023-52923?

CVE-2023-52923 affects various releases of the Linux kernel where the netfilter component is utilized.

What type of vulnerability is CVE-2023-52923?

CVE-2023-52923 is a vulnerability related to improvements in the garbage collection mechanism of netfilter in the Linux kernel.

Is CVE-2023-52923 an exploit in the Linux kernel?

CVE-2023-52923 is not an exploit but rather a resolved vulnerability aimed at improving the stability of the netfilter component in the kernel.

Vulnerability/
CVE-2023-52923

20/1/2025

CVE-2023-52923: netfilter: nf_tables: adapt set backend to use GC transaction API

First published: Mon Jan 20 2025(Updated: )

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: adapt set backend to use GC transaction API Use the GC transaction API to replace the old and buggy gc API and the busy mark approach. No set elements are removed from async garbage collection anymore, instead the _DEAD bit is set on so the set element is not visible from lookup path anymore. Async GC enqueues transaction work that might be aborted and retried later. rbtree and pipapo set backends does not set on the _DEAD bit from the sync GC path since this runs in control plane path where mutex is held. In this case, set elements are deactivated, removed and then released via RCU callback, sync GC never fails.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Red Hat Kernel-devel

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-52923?
The severity of CVE-2023-52923 is categorized as low, focusing on enhancing the garbage collection within the Linux kernel.
How do I fix CVE-2023-52923?
To fix CVE-2023-52923, update your Linux kernel to the latest stable version that includes the patch for this vulnerability.
What systems are affected by CVE-2023-52923?
CVE-2023-52923 affects various releases of the Linux kernel where the netfilter component is utilized.
What type of vulnerability is CVE-2023-52923?
CVE-2023-52923 is a vulnerability related to improvements in the garbage collection mechanism of netfilter in the Linux kernel.
Is CVE-2023-52923 an exploit in the Linux kernel?
CVE-2023-52923 is not an exploit but rather a resolved vulnerability aimed at improving the stability of the netfilter component in the kernel.

collector/mitre-cve
source/MITRE
agent/references
agent/title
agent/type
agent/description
agent/first-publish-date
collector/nvd-api
source/NVD
agent/author
agent/last-modified-date
agent/source
agent/event
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/red hat kernel-devel

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.