CVE-2023-54312
samples/bpf: Fix buffer overflow in tcp_basertt
Description
In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix buffer overflow in tcp_basertt Using sizeof(nv) or strlen(nv)+1 is correct.
INFO
Published Date :
Dec. 30, 2025, 1:16 p.m.
Last Modified :
Dec. 30, 2025, 1:16 p.m.
Remotely Exploit :
No
Source :
416baaa9-dc9f-4396-8d5f-8c081fb06d67
Affected Products
The following products are affected by CVE-2023-54312
vulnerability.
Even if cvefeed.io is aware of the exact versions of the
products
that
are
affected, the information is not represented in the table below.
No affected product recoded yet
Solution
- Update the Linux kernel to the latest patched version.
- Apply the specific BPF sample code fix for tcp_basertt.
- Recompile and deploy the updated kernel.
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2023-54312.
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2023-54312 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2023-54312
weaknesses.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2023-54312 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2023-54312 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Dec. 30, 2025
Action Type Old Value New Value Added Description In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix buffer overflow in tcp_basertt Using sizeof(nv) or strlen(nv)+1 is correct. Added Reference https://git.kernel.org/stable/c/56c25f2763a16db4fa1b486e6a21dc246cd992bd Added Reference https://git.kernel.org/stable/c/7c08d1b0d1f75117cf82aeaef49ba9f861b3fb59 Added Reference https://git.kernel.org/stable/c/bd3e880dce27d225598730d2bbb3dc05b443af22 Added Reference https://git.kernel.org/stable/c/cf7514fedc25675e68b74941df28a883951e70fd Added Reference https://git.kernel.org/stable/c/dfc004688518d24159606289c74d0c4e123e6436 Added Reference https://git.kernel.org/stable/c/e92f61e0701ea780e57e1be8dbd1fbec5f42c09e Added Reference https://git.kernel.org/stable/c/f394d204d64095d72ad9f03ff98f3f3743bf743a Added Reference https://git.kernel.org/stable/c/f4dea9689c5fea3d07170c2cb0703e216f1a0922