PT-2023-2761 · Linux+10 · Linux Kernel+10

Patryk Sondej

+1

·

Publicado

2023-05-02

·

Atualizado

2026-03-10

·

CVE-2023-32233

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 6.3.1
Description A use-after-free vulnerability in the Linux kernel's Netfilter nf tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges due to the mishandling of anonymous sets. This vulnerability may allow an attacker to impact the confidentiality, integrity, and availability of data or elevate their privileges in the system and execute arbitrary code.
Recommendations Linux kernel versions through 6.3.1: As a temporary workaround, consider disabling the nf tables commit() function until a patch is available. Restrict access to the Netfilter nf tables module to minimize the risk of exploitation. Avoid using the nf tables API until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

LPE

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

ALSA-2023:3349
ALSA-2023:3350
ALSA-2023:3708
ALSA-2023:3723
ALSA-2023_3349
ALSA-2023_3350
ALSA-2023_3708
ALSA-2023_3723
ALSA-2023_5068
ALSA-2023_5245
ALSA-2024_1607
ALSA-2024_2394
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2023-1878
ALT-PU-2023-1881
ALT-PU-2023-1944
ALT-PU-2023-2038
ALT-PU-2023-4663
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-26690
BDU:2023-02625
CESA-2023_3349
CESA-2023_3350
CESA-2023_3351
CVE-2023-32233
DLA-3446-1
DLA-3508-1
DSA-5402-1
ELSA-2023-12393
ELSA-2023-12394
ELSA-2023-12412
ELSA-2023-12413
ELSA-2023-3349
ELSA-2023-3723
ELSA-2023-5622
LSN-0095-1
MGASA-2023-0166
MGASA-2023-0201
MGASA-2023-0202
OESA-2023-1293
OPENSUSE-SU-2023_2646-1
OPENSUSE-SU-2023_2871-1
OPENSUSE-SU-2023_3630-1
OPENSUSE-SU-2023_3644-1
OPENSUSE-SU-2023_3647-1
OPENSUSE-SU-2023_3648-1
OPENSUSE-SU-2023_3671-1
RHSA-2023:3349
RHSA-2023:3350
RHSA-2023:3351
RHSA-2023:3465
RHSA-2023:3470
RHSA-2023:3490
RHSA-2023:3705
RHSA-2023:3708
RHSA-2023:3723
RHSA-2023:3852
RHSA-2023:3853
RHSA-2023:4125
RHSA-2023:4126
RHSA-2023:4130
RHSA-2023:4145
RHSA-2023:4146
RHSA-2023:4255
RHSA-2023:4256
RHSA-2023:4262
RHSA-2023:4696
RHSA-2023:4699
RHSA-2023:5419
RHSA-2023:5574
RHSA-2023:5621
RHSA-2023:5622
RHSA-2023_3349
RHSA-2023_3350
RHSA-2023_3708
RHSA-2023_3723
RHSA-2023_5621
RHSA-2023_5622
RLSA-2023:3350
RLSA-2023_3350
SUSE-SU-2023:2500-1
SUSE-SU-2023:2502-1
SUSE-SU-2023:2611-1
SUSE-SU-2023:2646-1
SUSE-SU-2023:2651-1
SUSE-SU-2023:2653-1
SUSE-SU-2023:2782-1
SUSE-SU-2023:2809-1
SUSE-SU-2023:2871-1
SUSE-SU-2023:3594-1
SUSE-SU-2023:3595-1
SUSE-SU-2023:3607-1
SUSE-SU-2023:3612-1
SUSE-SU-2023:3620-1
SUSE-SU-2023:3623-1
SUSE-SU-2023:3627-1
SUSE-SU-2023:3628-1
SUSE-SU-2023:3630-1
SUSE-SU-2023:3644-1
SUSE-SU-2023:3647-1
SUSE-SU-2023:3648-1
SUSE-SU-2023:3668-1
SUSE-SU-2023:3671-1
SUSE-SU-2023:3675-1
SUSE-SU-2023_2500-1
SUSE-SU-2023_2502-1
SUSE-SU-2023_2611-1
SUSE-SU-2023_2651-1
SUSE-SU-2023_2653-1
SUSE-SU-2023_2782-1
USN-6122-1
USN-6123-1
USN-6124-1
USN-6127-1
USN-6130-1
USN-6131-1
USN-6132-1
USN-6135-1
USN-6149-1
USN-6150-1
USN-6162-1
USN-6175-1
USN-6186-1
USN-6222-1
USN-6256-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu