PT-2023-4318 · Linux+6 · Linux Kernel+6

Kevin Rich

Published

2023-07-26

Updated

2024-10-08

CVE-2023-4015

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. On an error when building a nftables rule, deactivating immediate expressions in nft immediate deactivate() can lead to unbinding the chain and objects being deactivated but later used.

Recommendations Upgrade past commit 0a771f7b266b02d262900c75f1e175c7fe76fec2 to resolve the issue. As a temporary workaround, consider restricting the use of the nft immediate deactivate() function until a patch is available.

Exploit

Fix

DoS

LPE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-911CWE-416

Related Identifiers

ALT-PU-2023-5748

ALT-PU-2023-5787

ALT-PU-2023-7004

ALT-PU-2023-8474

ALT-PU-2024-4263

ALT-PU-2024-4843

AZL-28675

BDU:2023-04653

CVE-2023-4015

DSA-5492-1

OESA-2023-1634

OESA-2023-1635

OESA-2023-1636

RHSA-2024:0439

RHSA-2024:0448

RHSA-2024:0461

RHSA-2024_0461

USN-6315-1

USN-6316-1

USN-6318-1

USN-6321-1

USN-6325-1

USN-6328-1

USN-6330-1

USN-6332-1

USN-6348-1

USN-6385-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Ubuntu

PT-2023-4318 · Linux+6 · Linux Kernel+6

CVE-2023-4015

Weakness Enumeration

Related Identifiers

Affected Products

References · 117