CVE-2023-3390

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf tables api.c. Mishandled error handling with NFT MSG NEWRULE makes it possible to use a dangling pointer in the same transaction, causing a use-after-free vulnerability. This flaw allows a local attacker with user access to cause a privilege escalation issue. The vulnerability was exploited in real-world incidents, including the Google kernelCTF instances, where researchers managed to exploit all instances with the same bug.

Recommendations To resolve the issue, upgrade past commit 1240eb93f0616b21c675416516ff3d74798fdc97. As a temporary workaround, consider disabling the vulnerable NFT MSG NEWRULE parameter in the netfilter subsystem until a patch is available. Restrict access to the vulnerable nf tables api.c module to minimize the risk of exploitation. Avoid using the NFT MSG NEWRULE parameter in the affected API endpoint until the issue is resolved.