PT-2023-3676 · Linux+9 · Linux Kernel+9

Published

2023-06-20

·

Updated

2024-09-27

·

CVE-2023-3610

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the commit 4bedf9eee016286c835e3d8fa981ddece5338795
Description A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. The flaw in the error handling of bound chains causes a use-after-free in the abort path of NFT MSG NEWRULE. The vulnerability requires CAP NET ADMIN to be triggered.
Recommendations Upgrade past commit 4bedf9eee016286c835e3d8fa981ddece5338795 to resolve the issue. As a temporary workaround, consider restricting access to the netfilter: nf tables component to minimize the risk of exploitation.

Fix

LPE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2023:5069
ALSA-2023:5091
ALT-PU-2023-4663
ALT-PU-2023-8472
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-27673
BDU:2023-03961
CVE-2023-3610
DLA-3512-1
DSA-5461-1
OESA-2023-1467
OESA-2023-1468
OESA-2023-1471
OPENSUSE-SU-2023_3599-1
OPENSUSE-SU-2023_3599-2
OPENSUSE-SU-2023_3600-1
OPENSUSE-SU-2023_3600-2
OPENSUSE-SU-2023_3656-1
OPENSUSE-SU-2023_3682-1
OPENSUSE-SU-2023_3683-1
OPENSUSE-SU-2023_3683-2
OPENSUSE-SU-2023_3704-1
OPENSUSE-SU-2023_3704-2
OPENSUSE-SU-2023_3964-1
OPENSUSE-SU-2023_3969-1
OPENSUSE-SU-2023_3971-1
OPENSUSE-SU-2023_3988-1
OPENSUSE-SU-2023_4848-1
OPENSUSE-SU-2023_4872-1
OPENSUSE-SU-2024_3190-1
OPENSUSE-SU-2024_3209-1
OPENSUSE-SU-2024_3483-1
RHSA-2023:5069
RHSA-2023:5091
RHSA-2023:5093
RHSA-2023_5069
RHSA-2023_5091
RLSA-2023:5091
SUSE-SU-2023:3599-1
SUSE-SU-2023:3599-2
SUSE-SU-2023:3600-1
SUSE-SU-2023:3600-2
SUSE-SU-2023:3656-1
SUSE-SU-2023:3682-1
SUSE-SU-2023:3964-1
SUSE-SU-2023:3969-1
SUSE-SU-2023:3971-1
SUSE-SU-2023:3988-1
SUSE-SU-2023:4766-1
SUSE-SU-2023:4805-1
SUSE-SU-2023:4822-1
SUSE-SU-2023:4841-1
SUSE-SU-2023:4848-1
SUSE-SU-2023:4849-1
SUSE-SU-2023:4872-1
SUSE-SU-2024:3190-1
SUSE-SU-2024:3209-1
SUSE-SU-2024:3483-1
USN-6285-1
USN-6315-1
USN-6318-1
USN-6321-1
USN-6325-1
USN-6328-1
USN-6330-1
USN-6332-1
USN-6348-1
USN-6385-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu