PT-2023-6049 · Linux+10 · Linux Kernel+10

Alon Zahavi

Published

2023-10-15

Updated

2025-09-29

CVE-2023-5178

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel due to a logical bug. This issue may allow a malicious user to cause a use-after-free and double-free problem, which may permit remote code execution or lead to local privilege escalation. The vulnerability is related to the nvmet tcp free crypto function in the drivers/nvme/target/tcp.c file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

LPE

Multiple Releases of Same Resource or Handle

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1341CWE-416

Related Identifiers

ALSA-2023:7549

ALSA-2023_7549

ALSA-2024_1607

ALSA-2024_1902

ALSA-2024_1903

ALSA-2024_2394

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2023-6736

ALT-PU-2023-7439

ALT-PU-2023-7787

ALT-PU-2023-7838

ALT-PU-2024-6818

AZL-31777

AZL-31852

BDU:2023-06750

CESA-2023_7548

CESA-2023_7549

CESA-2023_7554

CVE-2023-5178

DLA-3711-1

DSA-5594-1

ELSA-2023-13043

ELSA-2023-13044

ELSA-2023-13048

ELSA-2023-13049

ELSA-2023-7549

ELSA-2024-0461

ELSA-2024-12094

MGASA-2023-0328

MGASA-2023-0331

OESA-2023-1797

OESA-2023-1798

OESA-2023-1799

OPENSUSE-SU-2023_4343-1

OPENSUSE-SU-2023_4345-1

OPENSUSE-SU-2023_4351-1

OPENSUSE-SU-2023_4375-1

OPENSUSE-SU-2023_4378-1

OPENSUSE-SU-2023_4414-1

OPENSUSE-SU-2024_0421-1

RHSA-2023:7370

RHSA-2023:7379

RHSA-2023:7418

RHSA-2023:7548

RHSA-2023:7549

RHSA-2023:7551

RHSA-2023:7554

RHSA-2023:7557

RHSA-2023:7559

RHSA-2023_7548

RHSA-2023_7549

RHSA-2024:0340

RHSA-2024:0378

RHSA-2024:0386

RHSA-2024:0412

RHSA-2024:0431

RHSA-2024:0432

RHSA-2024:0461

RHSA-2024:0554

RHSA-2024:0575

RHSA-2024:1268

RHSA-2024:1269

RHSA-2024:1278

RHSA-2024_0461

RLSA-2023:7548

RLSA-2023:7549

RLSA-2023_7548

RLSA-2023_7549

ROSA-SA-2024-2383

ROSA-SA-2024-2384

ROSA-SA-2024-2385

RXSA-2023:7549

SUSE-SU-2023:4343-1

SUSE-SU-2023:4345-1

SUSE-SU-2023:4351-1

SUSE-SU-2023:4375-1

SUSE-SU-2023:4378-1

SUSE-SU-2023:4414-1

SUSE-SU-2023_4378-1

SUSE-SU-2024:0331-1

SUSE-SU-2024:0348-1

SUSE-SU-2024:0352-1

SUSE-SU-2024:0378-1

SUSE-SU-2024:0395-1

SUSE-SU-2024:0414-1

SUSE-SU-2024:0421-1

USN-6497-1

USN-6534-1

USN-6534-2

USN-6534-3

USN-6536-1

USN-6537-1

USN-6548-1

USN-6548-2

USN-6548-3

USN-6548-4

USN-6548-5

USN-6549-1

USN-6549-2

USN-6549-3

USN-6549-4

USN-6549-5

USN-6573-1

USN-6635-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2023-6049 · Linux+10 · Linux Kernel+10

CVE-2023-5178

Weakness Enumeration

Related Identifiers

Affected Products

References · 289