PT-2023-4446 · Linux+9 · Linux Kernel+9

Published

2023-07-29

·

Updated

2024-06-15

·

CVE-2023-4128

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to a use-after-free flaw in the Linux kernel's net/sched component, specifically in the classifiers cls fw, cls u32, and cls route. This flaw can be exploited by a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter, leading to a kernel information leak issue. The vulnerability is associated with the repeated use of previously released memory in functions such as fw change() in net/sched/cls fw.c, u32 init knode() in net/sched/cls u32, and route4 change() in net/sched/cls route.c.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2023:7077
ALT-PU-2023-5488
ALT-PU-2023-5748
ALT-PU-2023-5787
ALT-PU-2023-6997
ALT-PU-2023-7004
BDU:2023-04837
CESA-2023_6901
CESA-2023_7077
CESA-2023_7423
CVE-2023-4128
DLA-3623-1
DSA-5480-1
DSA-5492-1
LSN-0098-1
OESA-2023-1535
OESA-2023-1536
OESA-2023-1537
OESA-2023-1538
OESA-2023-1539
OPENSUSE-SU-2023_3599-1
OPENSUSE-SU-2023_3599-2
OPENSUSE-SU-2023_3600-1
OPENSUSE-SU-2023_3600-2
OPENSUSE-SU-2023_3656-1
OPENSUSE-SU-2023_3680-1
OPENSUSE-SU-2023_3682-1
OPENSUSE-SU-2023_3683-1
OPENSUSE-SU-2023_3683-2
OPENSUSE-SU-2023_3684-1
OPENSUSE-SU-2023_3704-1
OPENSUSE-SU-2023_3704-2
OPENSUSE-SU-2023_3964-1
OPENSUSE-SU-2023_3969-1
OPENSUSE-SU-2023_3971-1
OPENSUSE-SU-2023_3988-1
OPENSUSE-SU-2024:13145-1
OPENSUSE-SU-2024:13704-1
RHSA-2023:5235
RHSA-2023:5238
RHSA-2023:5548
RHSA-2023:5575
RHSA-2023:5580
RHSA-2023:5588
RHSA-2023:5589
RHSA-2023:5603
RHSA-2023:5604
RHSA-2023:5627
RHSA-2023:5628
RHSA-2023:5775
RHSA-2023:5794
RHSA-2023:6901
RHSA-2023:7077
RHSA-2023:7370
RHSA-2023:7379
RHSA-2023:7418
RHSA-2023:7419
RHSA-2023:7423
RHSA-2023:7424
RHSA-2023:7539
RHSA-2023:7558
RHSA-2023_6901
RHSA-2023_7077
RHSA-2023_7423
RHSA-2023_7424
RHSA-2024:0261
RHSA-2024:0262
SUSE-SU-2023:3599-1
SUSE-SU-2023:3599-2
SUSE-SU-2023:3600-1
SUSE-SU-2023:3600-2
SUSE-SU-2023:3601-1
SUSE-SU-2023:3656-1
SUSE-SU-2023:3680-1
SUSE-SU-2023:3681-1
SUSE-SU-2023:3682-1
SUSE-SU-2023:3684-1
SUSE-SU-2023:3687-1
SUSE-SU-2023:3705-1
SUSE-SU-2023:3785-1
SUSE-SU-2023:3964-1
SUSE-SU-2023:3969-1
SUSE-SU-2023:3971-1
SUSE-SU-2023:3988-1
USN-6343-1
USN-6383-1
USN-6385-1
USN-6386-1
USN-6386-2
USN-6386-3
USN-6387-1
USN-6387-2
USN-6388-1
USN-6396-1
USN-6396-2
USN-6396-3
USN-6466-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu