PT-2023-1168 · Linux+9 · Linux Kernel+9

Davide Ornaghi

·

Published

2023-01-13

·

Updated

2025-11-11

·

CVE-2023-0179

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions 5.5 through 6.2-rc3
Description A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel, specifically in nftables. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution. The vulnerability is related to a stack buffer-overflow in the netfilter subsystem from the softirq context.
Recommendations For Linux kernel versions 5.5 through 6.2-rc3, consider disabling the nftables subsystem as a temporary workaround until a patch is available. Restrict access to the vulnerable Netfilter subsystem to minimize the risk of exploitation. Avoid using the nftables functionality in the affected Linux kernel versions until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

LPE

Stack Overflow

Out of bounds Read

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-125CWE-190

Related Identifiers

ALSA-2023:0951
ALSA-2023:0979
ALSA-2023_0951
ALSA-2023_0979
ALSA-2024_1607
ALSA-2024_2287
ALSA-2024_2394
ALSA-2024_3060
ALSA-2025_10379
ALSA-2025_10669
ALSA-2025_10670
ALSA-2025_11298
ALSA-2025_11299
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_13589
ALSA-2025_13590
ALSA-2025_13602
ALSA-2025_16880
ALSA-2025_18281
ALSA-2025_19102
ALSA-2025_19103
ALSA-2025_19409
ALSA-2025_20518
ALSA-2025_3260
ALSA-2025_3264
ALSA-2025_8643
ALT-PU-2023-1168
ALT-PU-2023-1169
ALT-PU-2023-1206
ALT-PU-2023-1267
ALT-PU-2023-1342
ALT-PU-2023-4894
ALT-PU-2023-7007
ALT-PU-2023-7682
ALT-PU-2023-8447
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-25932
BDU:2023-00383
CVE-2023-0179
DLA-3349-1
DSA-5324-1
ELSA-2023-0951
ELSA-2023-12116
ELSA-2023-12120
LSN-0093-1
MGASA-2023-0007
MGASA-2023-0087
MGASA-2023-0088
OESA-2023-1071
OESA-2023-1072
OPENSUSE-SU-2023_0394-1
OPENSUSE-SU-2023_0409-1
OPENSUSE-SU-2023_0433-1
OPENSUSE-SU-2023_0488-1
OPENSUSE-SU-2023_2646-1
OPENSUSE-SU-2023_2871-1
OPENSUSE-SU-2025_01633-1
OPENSUSE-SU-2025_1195-1
RHSA-2023:0951
RHSA-2023:0979
RHSA-2023:1008
RHSA-2023:1202
RHSA-2023:1203
RHSA-2023:1435
RHSA-2023_0951
RHSA-2023_0979
RLSA-2023:0979
RLSA-2023_0979
ROSA-SA-2023-2113
RXSA-2023:0951
SUSE-SU-2023:0394-1
SUSE-SU-2023:0409-1
SUSE-SU-2023:0433-1
SUSE-SU-2023:0488-1
SUSE-SU-2023:0522-1
SUSE-SU-2023:0523-1
SUSE-SU-2023:0547-1
SUSE-SU-2023:0553-1
SUSE-SU-2023:0562-1
SUSE-SU-2023:0564-1
SUSE-SU-2023:0578-1
SUSE-SU-2023:0635-1
SUSE-SU-2023:0637-1
SUSE-SU-2023:0779-1
SUSE-SU-2023:2646-1
SUSE-SU-2023:2809-1
SUSE-SU-2023:2871-1
SUSE-SU-2023_0394-1
SUSE-SU-2023_0409-1
SUSE-SU-2023_0433-1
SUSE-SU-2025:01633-1
SUSE-SU-2025:1176-1
SUSE-SU-2025:1183-1
SUSE-SU-2025:1195-1
SUSE-SU-2025:1241-1
SUSE-SU-2025:1574-1
SUSE-SU-2025_01633-1
SUSE-SU-2025_1195-1
SUSE-SU-2025_1241-1
USN-5856-1
USN-5857-1
USN-5858-1
USN-5859-1
USN-5911-1
USN-5912-1
USN-5915-1
USN-5929-1
USN-5935-1
USN-5938-1
USN-5941-1
USN-5950-1
USN-5962-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu