LIN1023-2629 : Security Advisory - linux - CVE-2023-39197
Created: Nov 10, 2023
Updated: Jan 24, 2024
Resolved Date: Nov 10, 2023
Found In Version: 10.23.30.1
Fix Version: 10.23.30.2
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel
Description
An out-of-bounds read vulnerability was found in Netfilter Connection Tracking (conntrack) in the Linux kernel. This flaw allows a remote user to disclose sensitive information via the DCCP protocol.
https://nvd.nist.gov/vuln/detail/CVE-2023-39197