PT-2023-2383 · Linux+10 · Linux Kernel+10

Valis

Publicado

2023-02-16

Atualizado

2025-10-08

CVE-2023-1829

CVSS v3.1

8.1

Alta

Vetor

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The tcindex delete function does not properly deactivate filters in case of a perfect hash while deleting the underlying structure, which can later lead to double freeing the structure. A local attacker user can use this vulnerability to elevate their privileges to root.

Recommendations Upgrade past commit 8c710f75256bb3cf05ac7b1672c82b92c43f3d28 to resolve the issue. As a temporary workaround, consider disabling the tcindex delete function until a patch is available. Restrict access to the vulnerable tcindex filter to minimize the risk of exploitation. Avoid using the tcindex filter in the affected API endpoints until the issue is resolved.

Exploit

Correção

DoS

LPE

Double Free

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-415CWE-416

Identificadores relacionados

ALSA-2023:4517

ALSA-2023:4541

ALSA-2023_4517

ALSA-2023_4541

ALSA-2024_10943

ALSA-2024_10944

ALSA-2024_1607

ALSA-2024_2394

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALSA-2025_2627

ALT-PU-2023-1878

ALT-PU-2023-1881

ALT-PU-2023-4894

ALT-PU-2023-8456

ALT-PU-2024-4263

ALT-PU-2024-4843

AZL-26169

BDU:2023-02165

CESA-2023_4517

CESA-2023_4531

CESA-2023_4541

CVE-2023-1829

DLA-3403-1

DLA-3404-1

ELSA-2023-4517

MGASA-2023-0148

MGASA-2023-0149

OESA-2023-1250

OESA-2023-1251

OESA-2023-1252

OESA-2023-1253

OPENSUSE-SU-2023_2871-1

OPENSUSE-SU-2023_2892-1

OPENSUSE-SU-2023_3302-1

OPENSUSE-SU-2024:13281-1

OPENSUSE-SU-2024_2185-1

OPENSUSE-SU-2024_2189-1

OPENSUSE-SU-2024_3651-1

OPENSUSE-SU-2024_3652-1

OPENSUSE-SU-2024_3685-1

OPENSUSE-SU-2024_3798-1

OPENSUSE-SU-2024_3814-1

OPENSUSE-SU-2024_3854-1

OPENSUSE-SU-2024_4180-1

OPENSUSE-SU-2024_4256-1

OPENSUSE-SU-2024_4264-1

OPENSUSE-SU-2025_0101-1

OPENSUSE-SU-2025_0106-1

OPENSUSE-SU-2025_0137-1

OPENSUSE-SU-2025_0238-1

OPENSUSE-SU-2025_0240-1

OPENSUSE-SU-2025_0244-1

RHSA-2023:4515

RHSA-2023:4516

RHSA-2023:4517

RHSA-2023:4531

RHSA-2023:4541

RHSA-2023:4789

RHSA-2023:4888

RHSA-2023:4961

RHSA-2023:4962

RHSA-2023:4967

RHSA-2023:7417

RHSA-2023:7431

RHSA-2023:7434

RHSA-2023_4517

RHSA-2023_4541

RLSA-2023:4517

RLSA-2023:4541

RLSA-2023_4517

RLSA-2023_4541

SUSE-SU-2023:2803-1

SUSE-SU-2023:2820-1

SUSE-SU-2023:2831-1

SUSE-SU-2023:2871-1

SUSE-SU-2023:2892-1

SUSE-SU-2023:3302-1

SUSE-SU-2023:3748-1

SUSE-SU-2023:3749-1

SUSE-SU-2023:3768-1

SUSE-SU-2023:3772-1

SUSE-SU-2023:3783-1

SUSE-SU-2023:3784-1

SUSE-SU-2023:3786-1

SUSE-SU-2023:3788-1

SUSE-SU-2023:3809-1

SUSE-SU-2023:3811-1

SUSE-SU-2023:3812-1

SUSE-SU-2023:3838-1

SUSE-SU-2023:3844-1

SUSE-SU-2023:3846-1

SUSE-SU-2023:3889-1

SUSE-SU-2023:3891-1

SUSE-SU-2023:3892-1

SUSE-SU-2023:3893-1

SUSE-SU-2023:3912-1

SUSE-SU-2023:3922-1

SUSE-SU-2023:3928-1

SUSE-SU-2023:4097-1

SUSE-SU-2023:4135-1

SUSE-SU-2023:4136-1

SUSE-SU-2023:4158-1

SUSE-SU-2023:4159-1

SUSE-SU-2023:4160-1

SUSE-SU-2023:4243-1

SUSE-SU-2023:4261-1

SUSE-SU-2023:4264-1

SUSE-SU-2023:4273-1

SUSE-SU-2023:4280-1

SUSE-SU-2023:4319-1

SUSE-SU-2023:4774-1

SUSE-SU-2023:4804-1

SUSE-SU-2023:4845-1

SUSE-SU-2023_2803-1

SUSE-SU-2023_3302-1

SUSE-SU-2023_4097-1

SUSE-SU-2023_4135-1

SUSE-SU-2023_4136-1

SUSE-SU-2023_4158-1

SUSE-SU-2023_4159-1

SUSE-SU-2023_4160-1

SUSE-SU-2024:0155-1

SUSE-SU-2024:0376-1

SUSE-SU-2024:0377-1

SUSE-SU-2024:0393-1

SUSE-SU-2024:0394-1

SUSE-SU-2024:0410-1

SUSE-SU-2024:0665-1

SUSE-SU-2024:0695-1

SUSE-SU-2024:1275-1

SUSE-SU-2024:1276-1

SUSE-SU-2024:1694-1

SUSE-SU-2024:1708-1

SUSE-SU-2024:1719-1

SUSE-SU-2024:1730-1

SUSE-SU-2024:1738-1

SUSE-SU-2024:1979-1

SUSE-SU-2024:1983-1

SUSE-SU-2024:2008-1

SUSE-SU-2024:2010-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2120-1

SUSE-SU-2024:2121-1

SUSE-SU-2024:2130-1

SUSE-SU-2024:2139-1

SUSE-SU-2024:2147-1

SUSE-SU-2024:2148-1

SUSE-SU-2024:2149-1

SUSE-SU-2024:2183-1

SUSE-SU-2024:2184-1

SUSE-SU-2024:2185-1

SUSE-SU-2024:2189-1

SUSE-SU-2024:2190-1

SUSE-SU-2024:2343-1

SUSE-SU-2024:2344-1

SUSE-SU-2024:2351-1

SUSE-SU-2024:2357-1

SUSE-SU-2024:2369-1

SUSE-SU-2024:2373-1

SUSE-SU-2024:2558-1

SUSE-SU-2024:2559-1

SUSE-SU-2024:2740-1

SUSE-SU-2024:2755-1

SUSE-SU-2024:2758-1

SUSE-SU-2024:2759-1

SUSE-SU-2024:2773-1

SUSE-SU-2024:2792-1

SUSE-SU-2024:2821-1

SUSE-SU-2024:2822-1

SUSE-SU-2024:3015-1

SUSE-SU-2024:3034-1

SUSE-SU-2024:3037-1

SUSE-SU-2024:3039-1

SUSE-SU-2024:3043-1

SUSE-SU-2024:3044-1

SUSE-SU-2024:3048-1

SUSE-SU-2024:3642-1

SUSE-SU-2024:3649-1

SUSE-SU-2024:3651-1

SUSE-SU-2024:3652-1

SUSE-SU-2024:3662-1

SUSE-SU-2024:3663-1

SUSE-SU-2024:3685-1

SUSE-SU-2024:3796-1

SUSE-SU-2024:3798-1

SUSE-SU-2024:3803-1

SUSE-SU-2024:3814-1

SUSE-SU-2024:3820-1

SUSE-SU-2024:3821-1

SUSE-SU-2024:3849-1

SUSE-SU-2024:3854-1

SUSE-SU-2024:4180-1

SUSE-SU-2024:4226-1

SUSE-SU-2024:4242-1

SUSE-SU-2024:4249-1

SUSE-SU-2024:4250-1

SUSE-SU-2024:4256-1

SUSE-SU-2024:4263-1

SUSE-SU-2024:4264-1

SUSE-SU-2024_0155-1

SUSE-SU-2024_1979-1

SUSE-SU-2024_1983-1

SUSE-SU-2024_2019-1

SUSE-SU-2024_2183-1

SUSE-SU-2024_2184-1

SUSE-SU-2024_2185-1

SUSE-SU-2024_2189-1

SUSE-SU-2024_2190-1

SUSE-SU-2025:0091-1

SUSE-SU-2025:0101-1

SUSE-SU-2025:0103-1

SUSE-SU-2025:0106-1

SUSE-SU-2025:0137-1

SUSE-SU-2025:0238-1

SUSE-SU-2025:0240-1

SUSE-SU-2025:0244-1

USN-6033-1

USN-6043-1

USN-6044-1

USN-6045-1

USN-6047-1

USN-6051-1

USN-6052-1

USN-6058-1

USN-6069-1

USN-6070-1

USN-6071-1

USN-6072-1

USN-6093-1

USN-6107-1

USN-6133-1

USN-6134-1

USN-6222-1

USN-6256-1

ZDI-23-898

Produtos afetados

Alt Linux

Almalinux

Astra Linux

Centos

Linux Kernel

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2023-2383 · Linux+10 · Linux Kernel+10

CVE-2023-1829

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2633