PT-2023-4318 · Linux+6 · Linux Kernel+6

Kevin Rich

Publicado

2023-07-26

Atualizado

2024-10-08

CVE-2023-4015

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. On an error when building a nftables rule, deactivating immediate expressions in nft immediate deactivate() can lead to unbinding the chain and objects being deactivated but later used.

Recommendations Upgrade past commit 0a771f7b266b02d262900c75f1e175c7fe76fec2 to resolve the issue. As a temporary workaround, consider restricting the use of the nft immediate deactivate() function until a patch is available.

Exploit

Correção

DoS

LPE

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-911CWE-416

Identificadores relacionados

ALT-PU-2023-5748

ALT-PU-2023-5787

ALT-PU-2023-7004

ALT-PU-2023-8474

ALT-PU-2024-4263

ALT-PU-2024-4843

AZL-28675

BDU:2023-04653

CVE-2023-4015

DSA-5492-1

OESA-2023-1634

OESA-2023-1635

OESA-2023-1636

RHSA-2024:0439

RHSA-2024:0448

RHSA-2024:0461

RHSA-2024_0461

USN-6315-1

USN-6316-1

USN-6318-1

USN-6321-1

USN-6325-1

USN-6328-1

USN-6330-1

USN-6332-1

USN-6348-1

USN-6385-1

Produtos afetados

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Ubuntu

PT-2023-4318 · Linux+6 · Linux Kernel+6

CVE-2023-4015

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 117