PT-2023-3973 · Linux+9 · Linux Kernel+9

Lion

·

Published

2023-07-13

·

Updated

2024-08-22

·

CVE-2023-3611

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to an out-of-bounds write vulnerability in the Linux kernel's net/sched: sch qfq component. This vulnerability can be exploited to achieve local privilege escalation. The qfq change agg() function in net/sched/sch qfq.c allows an out-of-bounds write because lmax is updated according to packet sizes without bounds checks.
Recommendations Upgrade past commit 3e337087c3b5805fe0b8a46ba622a962880b5d64 to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable qfq change agg() function until a patch is available.

Exploit

Fix

DoS

LPE

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2023:7077
ALT-PU-2023-5748
ALT-PU-2023-5787
ALT-PU-2023-7004
ALT-PU-2023-8472
ALT-PU-2024-6818
AZL-27675
BDU:2023-04269
CESA-2023_6901
CESA-2023_7077
CESA-2023_7423
CVE-2023-3611
DLA-3623-1
DLA-3710-1
DSA-5480-1
DSA-5492-1
OESA-2023-1467
OESA-2023-1468
OESA-2023-1469
OESA-2023-1470
OESA-2023-1471
OPENSUSE-SU-2023_3182-1
OPENSUSE-SU-2023_3302-1
OPENSUSE-SU-2023_3311-1
OPENSUSE-SU-2023_3313-1
OPENSUSE-SU-2023_3318-1
OPENSUSE-SU-2023_3376-1
OPENSUSE-SU-2023_3391-1
OPENSUSE-SU-2023_3392-1
RHSA-2023:6901
RHSA-2023:7077
RHSA-2023:7419
RHSA-2023:7423
RHSA-2023:7424
RHSA-2023_6901
RHSA-2023_7077
RHSA-2023_7423
RHSA-2023_7424
RHSA-2024:0261
RHSA-2024:0262
RHSA-2024:0378
RHSA-2024:0412
RHSA-2024:0554
RHSA-2024:0575
RHSA-2024:1268
RHSA-2024:1269
RHSA-2024:1278
RHSA-2024:1367
RHSA-2024:1377
RHSA-2024:1382
RHSA-2024:1831
SUSE-SU-2023:3182-1
SUSE-SU-2023:3302-1
SUSE-SU-2023:3309-1
SUSE-SU-2023:3311-1
SUSE-SU-2023:3313-1
SUSE-SU-2023:3318-1
SUSE-SU-2023:3324-1
SUSE-SU-2023:3329-1
SUSE-SU-2023:3349-1
SUSE-SU-2023:3376-1
SUSE-SU-2023:3390-1
SUSE-SU-2023:3391-1
SUSE-SU-2023:3392-1
SUSE-SU-2023:3421-1
SUSE-SU-2023_3182-1
USN-6285-1
USN-6309-1
USN-6315-1
USN-6317-1
USN-6318-1
USN-6321-1
USN-6324-1
USN-6325-1
USN-6327-1
USN-6328-1
USN-6329-1
USN-6330-1
USN-6331-1
USN-6332-1
USN-6341-1
USN-6342-1
USN-6342-2
USN-6346-1
USN-6348-1
USN-6357-1
USN-6385-1
USN-6397-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu