CVE-2023-6200

Kernel: icmpv6 router advertisement packets, aka linux tcp/ip remote code execution vulnerability

Published: 1/28/2024 Last updated: 6/5/2025 Reserved: 11/20/2023

A race condition was found in the Linux Kernel. Under certain conditions, an unauthenticated attacker from an adjacent network could send an ICMPv6 router advertisement packet, causing arbitrary code execution.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	7.5	High	CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Opam packages affected (29)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes ortools_solvers orun rawlink rawlink-eio rawlink-lwt restricted shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (9)

Product	Vendor	Version
Red Hat Enterprise Linux 9	Red Hat	<= 4.9.*
Red Hat Enterprise Linux 8	Red Hat	< 4.7.52.1
Red Hat Enterprise Linux 6	Red Hat	< 4.7.35.8
Red Hat Enterprise Linux 7	Red Hat	< 4.7.39.1
Red Hat Enterprise Linux 9	Red Hat	<= *
Red Hat Enterprise Linux 7	Red Hat	< 4.7.49.4
Red Hat Enterprise Linux 8	Red Hat	< 4.10.13.1
kernel	n/a	< 4.7.32.5
kernel	n/a	< 4.7.19.7

References (12)

Credits (2)

Red Hat would like to thank Lucas Leong (Trend Micro Zero Day Initiative) for reporting this issue.
Red Hat would like to thank Lucas Leong (Trend Micro Zero Day Initiative) for reporting this issue.