LIN1021-6812 : Security Advisory - linux - CVE-2023-39197
Created: Nov 10, 2023
Updated: Nov 26, 2024
Resolved Date: Nov 25, 2024
Found In Version: 10.21.20.1
Fix Version: 10.21.20.24
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel
Description
An out-of-bounds read vulnerability was found in Netfilter Connection Tracking (conntrack) in the Linux kernel. This flaw allows a remote user to disclose sensitive information via the DCCP protocol.
[https://nvd.nist.gov/vuln/detail/CVE-2023-39197]
