PT-2023-4326 · Linux+7 · Linux Kernel+7

Maxim Suhanov

·

Published

2023-07-13

·

Updated

2024-11-21

·

CVE-2023-4273

CVSS v3.1

6.7

Medium

VectorAV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a single long file name. Since the file name characters are copied into a stack variable, a local privileged attacker could use this flaw to overflow the kernel stack. The vulnerability is related to the exfat get uniname from ext entry() function in the fs/exfat/dir.c module, which is associated with accessing memory beyond the allocated buffer.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Stack Overflow

Memory Corruption

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-787CWE-125

Related Identifiers

ALT-PU-2023-5044
ALT-PU-2024-14046
ALT-PU-2024-6818
AZL-27914
BDU:2023-04661
CVE-2023-4273
DLA-3623-1
DSA-5480-1
DSA-5492-1
ELSA-2023-6583
OESA-2023-1614
OESA-2023-1615
OESA-2023-1616
OPENSUSE-SU-2023_3599-1
OPENSUSE-SU-2023_3599-2
OPENSUSE-SU-2023_3600-1
OPENSUSE-SU-2023_3600-2
OPENSUSE-SU-2023_3656-1
OPENSUSE-SU-2023_3682-1
OPENSUSE-SU-2023_3683-1
OPENSUSE-SU-2023_3683-2
OPENSUSE-SU-2023_3684-1
OPENSUSE-SU-2023_3704-1
OPENSUSE-SU-2023_3704-2
OPENSUSE-SU-2023_3806-1
OPENSUSE-SU-2023_3964-1
OPENSUSE-SU-2023_3969-1
OPENSUSE-SU-2023_3971-1
OPENSUSE-SU-2023_3988-1
RHSA-2023:6583
RHSA-2023_6583
SUSE-SU-2023:3599-1
SUSE-SU-2023:3599-2
SUSE-SU-2023:3600-1
SUSE-SU-2023:3600-2
SUSE-SU-2023:3656-1
SUSE-SU-2023:3682-1
SUSE-SU-2023:3684-1
SUSE-SU-2023:3687-1
SUSE-SU-2023:3772-1
SUSE-SU-2023:3773-1
SUSE-SU-2023:3783-1
SUSE-SU-2023:3784-1
SUSE-SU-2023:3785-1
SUSE-SU-2023:3788-1
SUSE-SU-2023:3806-1
SUSE-SU-2023:3812-1
SUSE-SU-2023:3844-1
SUSE-SU-2023:3846-1
SUSE-SU-2023:3889-1
SUSE-SU-2023:3891-1
SUSE-SU-2023:3892-1
SUSE-SU-2023:3893-1
SUSE-SU-2023:3912-1
SUSE-SU-2023:3922-1
SUSE-SU-2023:3923-1
SUSE-SU-2023:3924-1
SUSE-SU-2023:3928-1
SUSE-SU-2023:3929-1
SUSE-SU-2023:3964-1
SUSE-SU-2023:3969-1
SUSE-SU-2023:3971-1
SUSE-SU-2023:3988-1
SUSE-SU-2023_3599-1
SUSE-SU-2023_3599-2
SUSE-SU-2023_3600-1
SUSE-SU-2023_3600-2
SUSE-SU-2023_3656-1
SUSE-SU-2023_3682-1
SUSE-SU-2023_3683-1
SUSE-SU-2023_3683-2
SUSE-SU-2023_3684-1
SUSE-SU-2023_3687-1
SUSE-SU-2023_3704-1
SUSE-SU-2023_3704-2
SUSE-SU-2023_3964-1
SUSE-SU-2023_3969-1
SUSE-SU-2023_3971-1
SUSE-SU-2023_3988-1
USN-6343-1
USN-6385-1
USN-6412-1
USN-6416-1
USN-6416-2
USN-6416-3
USN-6445-1
USN-6445-2
USN-6466-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu