CVE-2023-52880
Vulnerability Summary
Timeline
Description
In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc Any unprivileged user can attach N_GSM0710 ldisc, but it requires CAP_NET_ADMIN to create a GSM network anyway. Require initial namespace CAP_NET_ADMIN to do that.
CVSS Metrics
- v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Trends
Current EPSS score: 0.01%• Percentile: 2%
Affected Systems
- debian•debian_linux
10.0
- linux•linux
≥ e1eaea46bb4020b38a141b84f88565d4603f8dd0, < 7d303dee473ba3529d75b63491e9963342107bed | ≥ e1eaea46bb4020b38a141b84f88565d4603f8dd0, < 7a529c9023a197ab3bf09bb95df32a3813f7ba58 | ≥ e1eaea46bb4020b38a141b84f88565d4603f8dd0, < ada28eb4b9561aab93942f3224a2e41d76fe57fa | ≥ e1eaea46bb4020b38a141b84f88565d4603f8dd0, < 2d154a54c58f9c8375bfbea9f7e51ba3bfb2e43a | ≥ e1eaea46bb4020b38a141b84f88565d4603f8dd0, < 2b85977977cbd120591b23c2450e90a5806a7167 | ≥ e1eaea46bb4020b38a141b84f88565d4603f8dd0, < 67c37756898a5a6b2941a13ae7260c89b54e0d88 | 2.6.35
- linux•linux_kernel
< 4.19.312 | ≥ 4.20, < 5.4.274 | ≥ 5.5, < 5.10.215 | ≥ 5.11, < 5.15.155 | ≥ 5.16, < 6.1.86 | ≥ 6.2, < 6.6
References (8)
- https://git.kernel.org/stable/c/7d303dee473ba3529d75b63491e9963342107bed
- https://git.kernel.org/stable/c/7a529c9023a197ab3bf09bb95df32a3813f7ba58
- https://git.kernel.org/stable/c/ada28eb4b9561aab93942f3224a2e41d76fe57fa
- https://git.kernel.org/stable/c/2d154a54c58f9c8375bfbea9f7e51ba3bfb2e43a
- https://git.kernel.org/stable/c/2b85977977cbd120591b23c2450e90a5806a7167
- https://git.kernel.org/stable/c/67c37756898a5a6b2941a13ae7260c89b54e0d88
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html