PT-2023-6049 · Linux+10 · Linux Kernel+10

Alon Zahavi

·

Publicado

2023-10-15

·

Atualizado

2025-09-29

·

CVE-2023-5178

CVSS v2.0

10

Alta

VetorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A use-after-free vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel due to a logical bug. This issue may allow a malicious user to cause a use-after-free and double-free problem, which may permit remote code execution or lead to local privilege escalation. The vulnerability is related to the nvmet tcp free crypto function in the drivers/nvme/target/tcp.c file.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

LPE

Multiple Releases of Same Resource or Handle

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-1341CWE-416

Identificadores relacionados

ALSA-2023:7549
ALSA-2023_7549
ALSA-2024_1607
ALSA-2024_1902
ALSA-2024_1903
ALSA-2024_2394
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2023-6736
ALT-PU-2023-7439
ALT-PU-2023-7787
ALT-PU-2023-7838
ALT-PU-2024-6818
AZL-31777
AZL-31852
BDU:2023-06750
CESA-2023_7548
CESA-2023_7549
CESA-2023_7554
CVE-2023-5178
DLA-3711-1
DSA-5594-1
ELSA-2023-13043
ELSA-2023-13044
ELSA-2023-13048
ELSA-2023-13049
ELSA-2023-7549
ELSA-2024-0461
ELSA-2024-12094
MGASA-2023-0328
MGASA-2023-0331
OESA-2023-1797
OESA-2023-1798
OESA-2023-1799
OPENSUSE-SU-2023_4343-1
OPENSUSE-SU-2023_4345-1
OPENSUSE-SU-2023_4351-1
OPENSUSE-SU-2023_4375-1
OPENSUSE-SU-2023_4378-1
OPENSUSE-SU-2023_4414-1
OPENSUSE-SU-2024_0421-1
RHSA-2023:7370
RHSA-2023:7379
RHSA-2023:7418
RHSA-2023:7548
RHSA-2023:7549
RHSA-2023:7551
RHSA-2023:7554
RHSA-2023:7557
RHSA-2023:7559
RHSA-2023_7548
RHSA-2023_7549
RHSA-2024:0340
RHSA-2024:0378
RHSA-2024:0386
RHSA-2024:0412
RHSA-2024:0431
RHSA-2024:0432
RHSA-2024:0461
RHSA-2024:0554
RHSA-2024:0575
RHSA-2024:1268
RHSA-2024:1269
RHSA-2024:1278
RHSA-2024_0461
RLSA-2023:7548
RLSA-2023:7549
RLSA-2023_7548
RLSA-2023_7549
ROSA-SA-2024-2383
ROSA-SA-2024-2384
ROSA-SA-2024-2385
RXSA-2023:7549
SUSE-SU-2023:4343-1
SUSE-SU-2023:4345-1
SUSE-SU-2023:4351-1
SUSE-SU-2023:4375-1
SUSE-SU-2023:4378-1
SUSE-SU-2023:4414-1
SUSE-SU-2023_4378-1
SUSE-SU-2024:0331-1
SUSE-SU-2024:0348-1
SUSE-SU-2024:0352-1
SUSE-SU-2024:0378-1
SUSE-SU-2024:0395-1
SUSE-SU-2024:0414-1
SUSE-SU-2024:0421-1
USN-6497-1
USN-6534-1
USN-6534-2
USN-6534-3
USN-6536-1
USN-6537-1
USN-6548-1
USN-6548-2
USN-6548-3
USN-6548-4
USN-6548-5
USN-6549-1
USN-6549-2
USN-6549-3
USN-6549-4
USN-6549-5
USN-6573-1
USN-6635-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu