-

CVE-2023-53839

EPSS 0.03%
Veröffentlicht 09.12.2025 01:29:55
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

dccp: fix data-race around dp->dccps_mss_cache

In the Linux kernel, the following vulnerability has been resolved:

dccp: fix data-race around dp->dccps_mss_cache

dccp_sendmsg() reads dp->dccps_mss_cache before locking the socket.
Same thing in do_dccp_getsockopt().

Add READ_ONCE()/WRITE_ONCE() annotations,
and change dccp_sendmsg() to check again dccps_mss_cache
after socket is locked.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 11

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < 162fa1e3cfb62aa780d7c40c8cccb6c2f8bef7c1

Status affected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < 2bdc7f272b3a110a4e1fdee6c47c8d20f9b20817

Status affected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < 67eebc7a9217f999b779d46fba5312a716f0dc1d

Status affected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < 6d701c95ee6463abcbb6da543060d6e444554135

Status affected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < f239c9e1d98b313435481b4926e8bdd06197e4d8

Status affected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < a6ddc1c774874dc704f96a99d015dc759627bba7

Status affected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < d1f38d313bdfc52fb2f662e66d0c60dd1cfe2384

Status affected

Version 7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c

Version < a47e598fbd8617967e49d85c49c22f9fc642704c

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.14

Status affected

Version 0

Version < 2.6.14

Status unaffected

Version <= 4.14.*

Version 4.14.323

Status unaffected

Version <= 4.19.*

Version 4.19.292

Status unaffected

Version <= 5.4.*

Version 5.4.254

Status unaffected

Version <= 5.10.*

Version 5.10.191

Status unaffected

Version <= 5.15.*

Version 5.15.127

Status unaffected

Version <= 6.1.*

Version 6.1.46

Status unaffected

Version <= 6.4.*

Version 6.4.11

Status unaffected

Version <= *

Version 6.5

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.085

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/162fa1e3cfb62aa780d7c40c8cccb6c2f8bef7c1

https://git.kernel.org/stable/c/2bdc7f272b3a110a4e1fdee6c47c8d20f9b20817

https://git.kernel.org/stable/c/67eebc7a9217f999b779d46fba5312a716f0dc1d

https://git.kernel.org/stable/c/6d701c95ee6463abcbb6da543060d6e444554135

https://git.kernel.org/stable/c/f239c9e1d98b313435481b4926e8bdd06197e4d8

https://git.kernel.org/stable/c/a6ddc1c774874dc704f96a99d015dc759627bba7

https://git.kernel.org/stable/c/d1f38d313bdfc52fb2f662e66d0c60dd1cfe2384

https://git.kernel.org/stable/c/a47e598fbd8617967e49d85c49c22f9fc642704c

https://nvd.nist.gov/vuln/detail/CVE-2023-53839

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53839

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53839

EUVD