VDB

DEBIAN-CVE-2023-2006

DEBIAN-CVE-2023-2006 PUBLISHED CVSS 7 HIGH

A race condition was found in the Linux kernel's RxRPC network protocol, within the processing of RxRPC bundles. This issue results from the lack of proper locking when performing operations on an object. This may allow an attacker to escalate privileges and execute arbitrary code in the context of the kernel.

Risk Scores

CVSS 3.1
7
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Debian:11linux*, 5.10.70-1~bpo10+1, 5.10.84-1
Debian:13linux0, 0, 0
Debian:12linux0, 0, 0
Debian:14linux0, 0, 0

Timeline

  • Apr 24, 2023 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›