CVE-2023-52658: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency"
In the Linux kernel, the following vulnerability has been resolved:
Revert "net/mlx5: Block entering switchdev mode with ns inconsistency"
This reverts commit 662404b24a4c4d839839ed25e3097571f5938b9b. The revert is required due to the suspicion it is not good for anything and cause crash.
Other sources
In the Linux kernel, the following vulnerability has been resolved:
Revert "net/mlx5: Block entering switchdev mode with ns inconsistency"
The Linux kernel CVE team has assigned CVE-2023-52658 to this issue.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051717-CVE-2023-52658-4c61@gregkh/T
— Red Hat
Linux Kernel is vulnerable to a denial of service, caused by a flaw related to switchdev mode with ns inconsistency. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.
— IBM
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of CVE-2023-52658?
CVE-2023-52658 has been classified as a low severity vulnerability.
How do I fix CVE-2023-52658?
To mitigate CVE-2023-52658, upgrade the kernel to version 6.6.22, 6.7.10, or higher if you're using affected versions.
Which systems are affected by CVE-2023-52658?
CVE-2023-52658 affects specific versions of the Linux kernel as well as IBM Security Verify Governance products up to version ISVG 10.0.2.
Is there a workaround for CVE-2023-52658?
No official workaround is provided for CVE-2023-52658; updating to the latest kernel version is recommended.
What does the revert mentioned in CVE-2023-52658 imply?
The revert in CVE-2023-52658 indicates that a previously made change to the Linux kernel has been reversed due to concerns about its efficacy.