PT-2023-6959 · Linux+4 · Linux Kernel+4

Lonial Kong

Publicado

2023-11-08

Atualizado

2025-03-20

CVE-2023-6111

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. The function nft trans gc catchall did not remove the catchall set element from the catchall list when the argument sync is true, making it possible to free a catchall set element many times.

Recommendations Upgrade past commit 93995bf4af2c5a99e2a87f0cd5ce547d31eb7630 to resolve the issue. As a temporary workaround, consider restricting access to the nft trans gc catchall function until a patch is available.

Exploit

Correção

LPE

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

ALT-PU-2024-10855

ALT-PU-2024-1867

AZL-32122

AZL-34865

BDU:2023-07978

CVE-2023-6111

USN-6576-1

Produtos afetados

Alt Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

PT-2023-6959 · Linux+4 · Linux Kernel+4

CVE-2023-6111

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 41