PT-2023-1620 · Linux+8 · Linux Kernel+8

Lianhui Tang

·

Published

2023-02-13

·

Updated

2024-04-15

·

CVE-2023-26545

CVSS v3.1

4.7

Medium

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.13
Description The issue is related to a double free error in the MPLS mechanism of the Linux kernel, which can be exploited by a remote attacker to impact the confidentiality, integrity, and availability of data. This error occurs upon an allocation failure during the renaming of a device, specifically when registering the sysctl table under a new location in net/mpls/af mpls.c.
Recommendations For Linux kernel versions prior to 6.1.13, update to version 6.1.13 or later to resolve the issue. As a temporary workaround, consider restricting access to the net/mpls/af mpls.c module to minimize the risk of exploitation.

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALSA-2023:7077
ALT-PU-2023-1331
ALT-PU-2023-1407
ALT-PU-2023-1667
ALT-PU-2023-1684
ALT-PU-2023-1741
ALT-PU-2023-1814
ALT-PU-2023-4894
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-13775
AZL-25583
BDU:2023-01129
CESA-2023_6901
CESA-2023_7077
CVE-2023-26545
DLA-3403-1
DLA-3404-1
MGASA-2023-0087
MGASA-2023-0088
OESA-2023-1173
OESA-2023-1174
OESA-2023-1177
OESA-2023-1178
OPENSUSE-SU-2023_0774-1
OPENSUSE-SU-2023_2646-1
OPENSUSE-SU-2023_2871-1
RHSA-2023:6583
RHSA-2023:6901
RHSA-2023:7077
RHSA-2023_6583
RHSA-2023_6901
RHSA-2023_7077
RHSA-2024:0412
RHSA-2024:0575
SUSE-SU-2023:0747-1
SUSE-SU-2023:0749-1
SUSE-SU-2023:0749-2
SUSE-SU-2023:0762-1
SUSE-SU-2023:0767-1
SUSE-SU-2023:0768-1
SUSE-SU-2023:0770-1
SUSE-SU-2023:0774-1
SUSE-SU-2023:0778-1
SUSE-SU-2023:0779-1
SUSE-SU-2023:0780-1
SUSE-SU-2023:0852-1
SUSE-SU-2023:1574-1
SUSE-SU-2023:1576-1
SUSE-SU-2023:1579-1
SUSE-SU-2023:1588-1
SUSE-SU-2023:1591-1
SUSE-SU-2023:1592-1
SUSE-SU-2023:1595-1
SUSE-SU-2023:1599-1
SUSE-SU-2023:1602-1
SUSE-SU-2023:1605-1
SUSE-SU-2023:1608-1
SUSE-SU-2023:1609-1
SUSE-SU-2023:1619-1
SUSE-SU-2023:1621-1
SUSE-SU-2023:1635-1
SUSE-SU-2023:1639-1
SUSE-SU-2023:1640-1
SUSE-SU-2023:1647-1
SUSE-SU-2023:1649-1
SUSE-SU-2023:1651-1
SUSE-SU-2023:1653-1
SUSE-SU-2023:1654-1
SUSE-SU-2023:1708-1
SUSE-SU-2023:1710-1
SUSE-SU-2023:2646-1
SUSE-SU-2023:2809-1
SUSE-SU-2023:2871-1
USN-5978-1
USN-6001-1
USN-6013-1
USN-6014-1
USN-6024-1
USN-6025-1
USN-6027-1
USN-6029-1
USN-6030-1
USN-6040-1
USN-6057-1
USN-6071-1
USN-6072-1
USN-6093-1
USN-6134-1
USN-6222-1
USN-6256-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu