CVE-2023-32269: 
Linux Kernel vulnerability analysis and mitigation

CVE-2023-32269 is a use-after-free vulnerability discovered in the Linux kernel before version 6.1.11, specifically in the net/netrom/afnetrom.c file. The vulnerability exists because accept() is allowed for a successfully connected AFNETROM socket, which can lead to a use-after-free condition through complex race conditions (NVD, Ubuntu).

The vulnerability occurs when calling listen() and accept() on an already connect()ed AFNETROM socket. When the peer socket sends data to sendmsg, the skb with its own sk stored in the connected socket's sk->skreceivequeue is connected, and nraccept() dequeues the skb waiting in the sk->skreceivequeue. This results in nraccept() allocating and returning a sock with the sk of the parent AFNETROM socket, leading to a use-after-free condition. The vulnerability has been assigned a CVSS v3.1 Base Score of 6.7 (Medium) with vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability can be exploited by a local attacker to cause a denial of service (system crash) or potentially execute arbitrary code. However, exploitation requires either netrom routing to be configured or the attacker must have the CAPNETADMIN capability (Ubuntu).

The vulnerability has been fixed in Linux kernel version 6.1.11. The fix involves modifying nrlisten() to return -EINVAL for sockets that have successfully completed nrconnect(). System administrators should update their Linux kernel to version 6.1.11 or later to address this vulnerability (Kernel Changelog, GitHub Patch).