CVE-2023-6200

Kernel: icmpv6 router advertisement packets, aka linux tcp/ip remote code execution vulnerability

Published: 1/28/2024 Last updated: 6/5/2025 Reserved: 11/20/2023

A race condition was found in the Linux Kernel. Under certain conditions, an unauthenticated attacker from an adjacent network could send an ICMPv6 router advertisement packet, causing arbitrary code execution.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	7.5	High	CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (11)

Product	Vendor	Version
Fedora	Fedora	n/a
Red Hat Enterprise Linux 6	Red Hat	15.1(2)SG4
Red Hat Enterprise Linux 7	Red Hat	15.1(2)SG7
Red Hat Enterprise Linux 8	Red Hat	15.2(4)M1
Red Hat Enterprise Linux 9	Red Hat	<= 6.4.15
Red Hat Virtualization 4	Red Hat	<= 7.0.0rc2
Red Hat Enterprise Linux 8	Red Hat	< 5.3.1308
Red Hat Enterprise Linux 7	Red Hat	15.0(2)MR
Red Hat Enterprise Linux 9	Red Hat	Not Fixed
kernel	n/a	n/a
kernel	n/a	<= 5.18.*

References (6)

Credits (1)

Red Hat would like to thank Lucas Leong (Trend Micro Zero Day Initiative) for reporting this issue.