CVE Vulnerabilities

CVE-2023-52556

Time-of-check Time-of-use (TOCTOU) Race Condition

Published: Mar 01, 2024 | Modified: Oct 10, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

In OpenBSD 7.4 before errata 009, a race condition between pf(4)s processing of packets and expiration of packet states may cause a kernel panic.

Weakness

The product checks the state of a resource before using that resource, but the resource’s state can change between the check and the use in a way that invalidates the results of the check.

Affected Software

Name Vendor Start Version End Version
Openbsd Openbsd * 7.4 (excluding)
Openbsd Openbsd 7.4 (including) 7.4 (including)
Openbsd Openbsd 7.4-errata_001 (including) 7.4-errata_001 (including)
Openbsd Openbsd 7.4-errata_002 (including) 7.4-errata_002 (including)
Openbsd Openbsd 7.4-errata_003 (including) 7.4-errata_003 (including)
Openbsd Openbsd 7.4-errata_004 (including) 7.4-errata_004 (including)
Openbsd Openbsd 7.4-errata_005 (including) 7.4-errata_005 (including)
Openbsd Openbsd 7.4-errata_006 (including) 7.4-errata_006 (including)
Openbsd Openbsd 7.4-errata_007 (including) 7.4-errata_007 (including)
Openbsd Openbsd 7.4-errata_008 (including) 7.4-errata_008 (including)

Potential Mitigations

References