PT-2023-5515 · Linux+5 · Linux Kernel+5

Kevin Rich

Published

2023-09-08

Updated

2025-12-11

CVE-2023-5197

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. The issue arises from the addition and removal of rules from chain bindings within the same transaction, leading to use-after-free.

Recommendations Upgrade past commit f15f29fd4779be8a418b66e9d52979bb6d6c2325 to resolve the issue. As a temporary workaround, consider restricting access to the netfilter: nf tables component to minimize the risk of exploitation.

Exploit

Fix

LPE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2023-7004

ALT-PU-2023-7787

ALT-PU-2023-7838

ALT-PU-2024-14046

ALT-PU-2024-6818

AZL-30057

BDU:2023-06163

CVE-2023-5197

DLA-3711-1

DSA-5594-1

LSN-0099-1

MGASA-2023-0295

MGASA-2023-0296

OESA-2023-1843

OESA-2023-1844

OESA-2023-1845

OPENSUSE-SU-2024_0858-1

SUSE-SU-2024:0855-1

SUSE-SU-2024:0858-1

SUSE-SU-2024:0900-1

SUSE-SU-2024:0900-2

SUSE-SU-2024:0910-1

SUSE-SU-2024:0977-1

USN-6443-1

USN-6444-1

USN-6444-2

USN-6445-1

USN-6445-2

USN-6446-1

USN-6446-2

USN-6446-3

USN-6454-1

USN-6454-2

USN-6454-3

USN-6454-4

USN-6466-1

USN-6479-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Suse

Ubuntu

PT-2023-5515 · Linux+5 · Linux Kernel+5

CVE-2023-5197

Weakness Enumeration

Related Identifiers

Affected Products

References · 281