CVE-2023-52997: 
Linux Kernel vulnerability analysis and mitigation

CVE-2023-52997 is a vulnerability discovered in the Linux kernel's IPv4 implementation, specifically in the ipmetricsconvert() function. The vulnerability was disclosed on March 27, 2025, affecting various Linux kernel versions. The issue involves a potential Spectre v1 gadget that could lead to kernel memory content leakage through CPU speculation when using type as an array index (NVD).

The vulnerability exists in the ipmetricsconvert() function where an array index operation could be exploited through CPU speculation. The vulnerable code pattern is: if (!type) continue; if (type > RTAX_MAX) return -EINVAL; ... metrics[type - 1] = val; where @type is used as an array index without proper speculation barriers. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (Red Hat).

The vulnerability could potentially lead to the leakage of kernel memory content through CPU speculation-based side-channel attacks. This type of vulnerability is particularly concerning as it could allow attackers to access sensitive information from kernel memory (NVD).

Multiple Linux distributions have released patches to address this vulnerability. Ubuntu has fixed the issue in various versions including 22.04 LTS (5.15.0-70.77), 20.04 LTS (5.4.0-147.164), and 18.04 LTS (4.15.0-209.220). Red Hat has also addressed the vulnerability in their Enterprise Linux 8 and 9 distributions (Ubuntu).