PT-2023-4316 · Linux+7 · Linux Kernel+7

Kevin Rich

·

Published

2023-07-20

·

Updated

2025-03-20

·

CVE-2023-3777

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. When nf tables delrule() is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release the objects in certain circumstances.
Recommendations Upgrade past commit 6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8 to resolve the issue. As a temporary workaround, consider restricting access to the nf tables delrule() function until a patch is available.

Exploit

Fix

DoS

LPE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-911CWE-416

Related Identifiers

ALT-PU-2023-5748
ALT-PU-2023-5787
ALT-PU-2023-7004
ALT-PU-2023-8472
ALT-PU-2024-6818
BDU:2023-04651
CVE-2023-3777
DSA-5492-1
LSN-0098-1
LSN-0099-1
OESA-2023-1634
OESA-2023-1635
OESA-2023-1636
OPENSUSE-SU-2023_4345-1
OPENSUSE-SU-2023_4348-1
OPENSUSE-SU-2023_4351-1
OPENSUSE-SU-2023_4375-1
OPENSUSE-SU-2023_4378-1
OPENSUSE-SU-2023_4414-1
OPENSUSE-SU-2023_4732-1
OPENSUSE-SU-2023_4775-1
OPENSUSE-SU-2023_4781-1
OPENSUSE-SU-2023_4836-1
OPENSUSE-SU-2023_4839-1
OPENSUSE-SU-2023_4848-1
OPENSUSE-SU-2023_4867-1
OPENSUSE-SU-2023_4871-1
OPENSUSE-SU-2023_4872-1
RHSA-2024:0431
RHSA-2024:0432
RHSA-2024:0439
RHSA-2024:0448
RHSA-2024:0461
RHSA-2024_0461
SUSE-SU-2023:4345-1
SUSE-SU-2023:4348-1
SUSE-SU-2023:4351-1
SUSE-SU-2023:4358-1
SUSE-SU-2023:4375-1
SUSE-SU-2023:4378-1
SUSE-SU-2023:4414-1
SUSE-SU-2023:4732-1
SUSE-SU-2023:4766-1
SUSE-SU-2023:4775-1
SUSE-SU-2023:4776-1
SUSE-SU-2023:4781-1
SUSE-SU-2023:4801-1
SUSE-SU-2023:4805-1
SUSE-SU-2023:4817-1
SUSE-SU-2023:4820-1
SUSE-SU-2023:4822-1
SUSE-SU-2023:4836-1
SUSE-SU-2023:4839-1
SUSE-SU-2023:4841-1
SUSE-SU-2023:4848-1
SUSE-SU-2023:4849-1
SUSE-SU-2023:4862-1
SUSE-SU-2023:4863-1
SUSE-SU-2023:4867-1
SUSE-SU-2023:4871-1
SUSE-SU-2023:4872-1
USN-6315-1
USN-6316-1
USN-6318-1
USN-6321-1
USN-6325-1
USN-6328-1
USN-6330-1
USN-6332-1
USN-6348-1
USN-6385-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu