PT-2023-2383 · Linux+10 · Linux Kernel+10

Valis

·

Published

2023-02-16

·

Updated

2025-10-08

·

CVE-2023-1829

CVSS v3.1

8.1

High

VectorAV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)
Description A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The tcindex delete function does not properly deactivate filters in case of a perfect hash while deleting the underlying structure, which can later lead to double freeing the structure. A local attacker user can use this vulnerability to elevate their privileges to root.
Recommendations Upgrade past commit 8c710f75256bb3cf05ac7b1672c82b92c43f3d28 to resolve the issue. As a temporary workaround, consider disabling the tcindex delete function until a patch is available. Restrict access to the vulnerable tcindex filter to minimize the risk of exploitation. Avoid using the tcindex filter in the affected API endpoints until the issue is resolved.

Exploit

Fix

DoS

LPE

Double Free

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415CWE-416

Related Identifiers

ALSA-2023:4517
ALSA-2023:4541
ALSA-2023_4517
ALSA-2023_4541
ALSA-2024_10943
ALSA-2024_10944
ALSA-2024_1607
ALSA-2024_2394
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALSA-2025_2627
ALT-PU-2023-1878
ALT-PU-2023-1881
ALT-PU-2023-4894
ALT-PU-2023-8456
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-26169
BDU:2023-02165
CESA-2023_4517
CESA-2023_4531
CESA-2023_4541
CVE-2023-1829
DLA-3403-1
DLA-3404-1
ELSA-2023-4517
MGASA-2023-0148
MGASA-2023-0149
OESA-2023-1250
OESA-2023-1251
OESA-2023-1252
OESA-2023-1253
OPENSUSE-SU-2023_2871-1
OPENSUSE-SU-2023_2892-1
OPENSUSE-SU-2023_3302-1
OPENSUSE-SU-2024:13281-1
OPENSUSE-SU-2024_2185-1
OPENSUSE-SU-2024_2189-1
OPENSUSE-SU-2024_3651-1
OPENSUSE-SU-2024_3652-1
OPENSUSE-SU-2024_3685-1
OPENSUSE-SU-2024_3798-1
OPENSUSE-SU-2024_3814-1
OPENSUSE-SU-2024_3854-1
OPENSUSE-SU-2024_4180-1
OPENSUSE-SU-2024_4256-1
OPENSUSE-SU-2024_4264-1
OPENSUSE-SU-2025_0101-1
OPENSUSE-SU-2025_0106-1
OPENSUSE-SU-2025_0137-1
OPENSUSE-SU-2025_0238-1
OPENSUSE-SU-2025_0240-1
OPENSUSE-SU-2025_0244-1
RHSA-2023:4515
RHSA-2023:4516
RHSA-2023:4517
RHSA-2023:4531
RHSA-2023:4541
RHSA-2023:4789
RHSA-2023:4888
RHSA-2023:4961
RHSA-2023:4962
RHSA-2023:4967
RHSA-2023:7417
RHSA-2023:7431
RHSA-2023:7434
RHSA-2023_4517
RHSA-2023_4541
RLSA-2023:4517
RLSA-2023:4541
RLSA-2023_4517
RLSA-2023_4541
SUSE-SU-2023:2803-1
SUSE-SU-2023:2820-1
SUSE-SU-2023:2831-1
SUSE-SU-2023:2871-1
SUSE-SU-2023:2892-1
SUSE-SU-2023:3302-1
SUSE-SU-2023:3748-1
SUSE-SU-2023:3749-1
SUSE-SU-2023:3768-1
SUSE-SU-2023:3772-1
SUSE-SU-2023:3783-1
SUSE-SU-2023:3784-1
SUSE-SU-2023:3786-1
SUSE-SU-2023:3788-1
SUSE-SU-2023:3809-1
SUSE-SU-2023:3811-1
SUSE-SU-2023:3812-1
SUSE-SU-2023:3838-1
SUSE-SU-2023:3844-1
SUSE-SU-2023:3846-1
SUSE-SU-2023:3889-1
SUSE-SU-2023:3891-1
SUSE-SU-2023:3892-1
SUSE-SU-2023:3893-1
SUSE-SU-2023:3912-1
SUSE-SU-2023:3922-1
SUSE-SU-2023:3928-1
SUSE-SU-2023:4097-1
SUSE-SU-2023:4135-1
SUSE-SU-2023:4136-1
SUSE-SU-2023:4158-1
SUSE-SU-2023:4159-1
SUSE-SU-2023:4160-1
SUSE-SU-2023:4243-1
SUSE-SU-2023:4261-1
SUSE-SU-2023:4264-1
SUSE-SU-2023:4273-1
SUSE-SU-2023:4280-1
SUSE-SU-2023:4319-1
SUSE-SU-2023:4774-1
SUSE-SU-2023:4804-1
SUSE-SU-2023:4845-1
SUSE-SU-2023_2803-1
SUSE-SU-2023_3302-1
SUSE-SU-2023_4097-1
SUSE-SU-2023_4135-1
SUSE-SU-2023_4136-1
SUSE-SU-2023_4158-1
SUSE-SU-2023_4159-1
SUSE-SU-2023_4160-1
SUSE-SU-2024:0155-1
SUSE-SU-2024:0376-1
SUSE-SU-2024:0377-1
SUSE-SU-2024:0393-1
SUSE-SU-2024:0394-1
SUSE-SU-2024:0410-1
SUSE-SU-2024:0665-1
SUSE-SU-2024:0695-1
SUSE-SU-2024:1275-1
SUSE-SU-2024:1276-1
SUSE-SU-2024:1694-1
SUSE-SU-2024:1708-1
SUSE-SU-2024:1719-1
SUSE-SU-2024:1730-1
SUSE-SU-2024:1738-1
SUSE-SU-2024:1979-1
SUSE-SU-2024:1983-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2010-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2120-1
SUSE-SU-2024:2121-1
SUSE-SU-2024:2130-1
SUSE-SU-2024:2139-1
SUSE-SU-2024:2147-1
SUSE-SU-2024:2148-1
SUSE-SU-2024:2149-1
SUSE-SU-2024:2183-1
SUSE-SU-2024:2184-1
SUSE-SU-2024:2185-1
SUSE-SU-2024:2189-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2343-1
SUSE-SU-2024:2344-1
SUSE-SU-2024:2351-1
SUSE-SU-2024:2357-1
SUSE-SU-2024:2369-1
SUSE-SU-2024:2373-1
SUSE-SU-2024:2558-1
SUSE-SU-2024:2559-1
SUSE-SU-2024:2740-1
SUSE-SU-2024:2755-1
SUSE-SU-2024:2758-1
SUSE-SU-2024:2759-1
SUSE-SU-2024:2773-1
SUSE-SU-2024:2792-1
SUSE-SU-2024:2821-1
SUSE-SU-2024:2822-1
SUSE-SU-2024:3015-1
SUSE-SU-2024:3034-1
SUSE-SU-2024:3037-1
SUSE-SU-2024:3039-1
SUSE-SU-2024:3043-1
SUSE-SU-2024:3044-1
SUSE-SU-2024:3048-1
SUSE-SU-2024:3642-1
SUSE-SU-2024:3649-1
SUSE-SU-2024:3651-1
SUSE-SU-2024:3652-1
SUSE-SU-2024:3662-1
SUSE-SU-2024:3663-1
SUSE-SU-2024:3685-1
SUSE-SU-2024:3796-1
SUSE-SU-2024:3798-1
SUSE-SU-2024:3803-1
SUSE-SU-2024:3814-1
SUSE-SU-2024:3820-1
SUSE-SU-2024:3821-1
SUSE-SU-2024:3849-1
SUSE-SU-2024:3854-1
SUSE-SU-2024:4180-1
SUSE-SU-2024:4226-1
SUSE-SU-2024:4242-1
SUSE-SU-2024:4249-1
SUSE-SU-2024:4250-1
SUSE-SU-2024:4256-1
SUSE-SU-2024:4263-1
SUSE-SU-2024:4264-1
SUSE-SU-2024_0155-1
SUSE-SU-2024_1979-1
SUSE-SU-2024_1983-1
SUSE-SU-2024_2019-1
SUSE-SU-2024_2183-1
SUSE-SU-2024_2184-1
SUSE-SU-2024_2185-1
SUSE-SU-2024_2189-1
SUSE-SU-2024_2190-1
SUSE-SU-2025:0091-1
SUSE-SU-2025:0101-1
SUSE-SU-2025:0103-1
SUSE-SU-2025:0106-1
SUSE-SU-2025:0137-1
SUSE-SU-2025:0238-1
SUSE-SU-2025:0240-1
SUSE-SU-2025:0244-1
USN-6033-1
USN-6043-1
USN-6044-1
USN-6045-1
USN-6047-1
USN-6051-1
USN-6052-1
USN-6058-1
USN-6069-1
USN-6070-1
USN-6071-1
USN-6072-1
USN-6093-1
USN-6107-1
USN-6133-1
USN-6134-1
USN-6222-1
USN-6256-1
ZDI-23-898

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu