PT-2023-3971 · Linux+5 · Linux Kernel+5

Lin Ma

·

Published

2023-07-23

·

Updated

2026-02-12

·

CVE-2023-3773

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP NET ADMIN privileges to cause a 4 byte out-of-bounds read of XFRMA MTIMER THRESH when parsing netlink attributes, leading to potential leakage of sensitive heap data to userspace. The vulnerability is related to a buffer overflow in the net/xfrm/xfrm user.c module.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2023-5060
AZL-33496
BDU:2023-04267
CVE-2023-3773
DLA-3623-1
DSA-5492-1
MGASA-2023-0328
MGASA-2023-0331
RHSA-2023:6583
RHSA-2023_6583
USN-6415-1
USN-6534-1
USN-6534-2
USN-6534-3
USN-6549-1
USN-6549-2
USN-6549-3
USN-6549-4
USN-6549-5

Affected Products

Alt Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Ubuntu