PT-2023-4316 · Linux+7 · Linux Kernel+7

Kevin Rich

·

Publicado

2023-07-20

·

Atualizado

2025-03-20

·

CVE-2023-3777

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. When nf tables delrule() is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release the objects in certain circumstances.
Recommendations Upgrade past commit 6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8 to resolve the issue. As a temporary workaround, consider restricting access to the nf tables delrule() function until a patch is available.

Exploit

Correção

DoS

LPE

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-911CWE-416

Identificadores relacionados

ALT-PU-2023-5748
ALT-PU-2023-5787
ALT-PU-2023-7004
ALT-PU-2023-8472
ALT-PU-2024-6818
BDU:2023-04651
CVE-2023-3777
DSA-5492-1
LSN-0098-1
LSN-0099-1
OESA-2023-1634
OESA-2023-1635
OESA-2023-1636
OPENSUSE-SU-2023_4345-1
OPENSUSE-SU-2023_4348-1
OPENSUSE-SU-2023_4351-1
OPENSUSE-SU-2023_4375-1
OPENSUSE-SU-2023_4378-1
OPENSUSE-SU-2023_4414-1
OPENSUSE-SU-2023_4732-1
OPENSUSE-SU-2023_4775-1
OPENSUSE-SU-2023_4781-1
OPENSUSE-SU-2023_4836-1
OPENSUSE-SU-2023_4839-1
OPENSUSE-SU-2023_4848-1
OPENSUSE-SU-2023_4867-1
OPENSUSE-SU-2023_4871-1
OPENSUSE-SU-2023_4872-1
RHSA-2024:0431
RHSA-2024:0432
RHSA-2024:0439
RHSA-2024:0448
RHSA-2024:0461
RHSA-2024_0461
SUSE-SU-2023:4345-1
SUSE-SU-2023:4348-1
SUSE-SU-2023:4351-1
SUSE-SU-2023:4358-1
SUSE-SU-2023:4375-1
SUSE-SU-2023:4378-1
SUSE-SU-2023:4414-1
SUSE-SU-2023:4732-1
SUSE-SU-2023:4766-1
SUSE-SU-2023:4775-1
SUSE-SU-2023:4776-1
SUSE-SU-2023:4781-1
SUSE-SU-2023:4801-1
SUSE-SU-2023:4805-1
SUSE-SU-2023:4817-1
SUSE-SU-2023:4820-1
SUSE-SU-2023:4822-1
SUSE-SU-2023:4836-1
SUSE-SU-2023:4839-1
SUSE-SU-2023:4841-1
SUSE-SU-2023:4848-1
SUSE-SU-2023:4849-1
SUSE-SU-2023:4862-1
SUSE-SU-2023:4863-1
SUSE-SU-2023:4867-1
SUSE-SU-2023:4871-1
SUSE-SU-2023:4872-1
USN-6315-1
USN-6316-1
USN-6318-1
USN-6321-1
USN-6325-1
USN-6328-1
USN-6330-1
USN-6332-1
USN-6348-1
USN-6385-1

Produtos afetados

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu