CVE-2023-53566

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the netfilter module, specifically in the nft set rbtree function, related to element insertion. A null dereference can occur during element insertion due to the potential for rb prev() to return NULL within nft rbtree gc elem(). Additionally, a use-after-free condition exists during iteration, where the node can be freed, necessitating caching of the next value for use. This can lead to a general protection fault. The nft add set elem and nf tables newsetelem functions are involved in the issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.