vulnerability

Red Hat: CVE-2023-52735: kernel: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (Multiple Advisories)

Name: Red Hat: CVE-2023-52735: kernel: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (Multiple Advisories)
Creator: Red Hat
Published: 2024-05-21T00:00:00.000Z
Keywords: CVE, CWE-120, Red Hat, 2023, 52735, kernel, redhat-upgrade-kernel, redhat-upgrade-kernel-rt, Severity 4

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:L/Au:M/C:N/I:N/A:C)

Published

May 21, 2024

Added

Sep 13, 2024

Modified

Mar 27, 2026

Description

In the Linux kernel, the following vulnerability has been resolved:

bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself

sock_map proto callbacks should never call themselves by design. Protect
against bugs like [1] and break out of the recursive loop to avoid a stack
overflow in favor of a resource leak.

[1] https://lore.kernel.org/all/[email protected]/

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-120
EUVD-EUVD-2023-59454
NVD-CVE-2023-52735
REDHAT-RHSA-2024:5672
REDHAT-RHSA-2024:5673
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-59454

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report

Red Hat: CVE-2023-52735: kernel: bpf, sockmap: Don&#39;t let sock_map_{close,destroy,unhash} call itself (Multiple Advisories)

Description

Solutions

References

2026 Global Threat Landscape Report

Red Hat: CVE-2023-52735: kernel: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (Multiple Advisories)