PT-2023-4326 · Linux+7 · Linux Kernel+7

Maxim Suhanov

·

Publicado

2023-07-13

·

Atualizado

2024-11-21

·

CVE-2023-4273

CVSS v3.1

6.7

Média

VetorAV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a single long file name. Since the file name characters are copied into a stack variable, a local privileged attacker could use this flaw to overflow the kernel stack. The vulnerability is related to the exfat get uniname from ext entry() function in the fs/exfat/dir.c module, which is associated with accessing memory beyond the allocated buffer.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Stack Overflow

Memory Corruption

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-121CWE-787CWE-125

Identificadores relacionados

ALT-PU-2023-5044
ALT-PU-2024-14046
ALT-PU-2024-6818
AZL-27914
BDU:2023-04661
CVE-2023-4273
DLA-3623-1
DSA-5480-1
DSA-5492-1
ELSA-2023-6583
OESA-2023-1614
OESA-2023-1615
OESA-2023-1616
OPENSUSE-SU-2023_3599-1
OPENSUSE-SU-2023_3599-2
OPENSUSE-SU-2023_3600-1
OPENSUSE-SU-2023_3600-2
OPENSUSE-SU-2023_3656-1
OPENSUSE-SU-2023_3682-1
OPENSUSE-SU-2023_3683-1
OPENSUSE-SU-2023_3683-2
OPENSUSE-SU-2023_3684-1
OPENSUSE-SU-2023_3704-1
OPENSUSE-SU-2023_3704-2
OPENSUSE-SU-2023_3806-1
OPENSUSE-SU-2023_3964-1
OPENSUSE-SU-2023_3969-1
OPENSUSE-SU-2023_3971-1
OPENSUSE-SU-2023_3988-1
RHSA-2023:6583
RHSA-2023_6583
SUSE-SU-2023:3599-1
SUSE-SU-2023:3599-2
SUSE-SU-2023:3600-1
SUSE-SU-2023:3600-2
SUSE-SU-2023:3656-1
SUSE-SU-2023:3682-1
SUSE-SU-2023:3684-1
SUSE-SU-2023:3687-1
SUSE-SU-2023:3772-1
SUSE-SU-2023:3773-1
SUSE-SU-2023:3783-1
SUSE-SU-2023:3784-1
SUSE-SU-2023:3785-1
SUSE-SU-2023:3788-1
SUSE-SU-2023:3806-1
SUSE-SU-2023:3812-1
SUSE-SU-2023:3844-1
SUSE-SU-2023:3846-1
SUSE-SU-2023:3889-1
SUSE-SU-2023:3891-1
SUSE-SU-2023:3892-1
SUSE-SU-2023:3893-1
SUSE-SU-2023:3912-1
SUSE-SU-2023:3922-1
SUSE-SU-2023:3923-1
SUSE-SU-2023:3924-1
SUSE-SU-2023:3928-1
SUSE-SU-2023:3929-1
SUSE-SU-2023:3964-1
SUSE-SU-2023:3969-1
SUSE-SU-2023:3971-1
SUSE-SU-2023:3988-1
SUSE-SU-2023_3599-1
SUSE-SU-2023_3599-2
SUSE-SU-2023_3600-1
SUSE-SU-2023_3600-2
SUSE-SU-2023_3656-1
SUSE-SU-2023_3682-1
SUSE-SU-2023_3683-1
SUSE-SU-2023_3683-2
SUSE-SU-2023_3684-1
SUSE-SU-2023_3687-1
SUSE-SU-2023_3704-1
SUSE-SU-2023_3704-2
SUSE-SU-2023_3964-1
SUSE-SU-2023_3969-1
SUSE-SU-2023_3971-1
SUSE-SU-2023_3988-1
USN-6343-1
USN-6385-1
USN-6412-1
USN-6416-1
USN-6416-2
USN-6416-3
USN-6445-1
USN-6445-2
USN-6466-1

Produtos afetados

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu