CVE-2023-54243

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a use-after-free issue within the ebtables component. Specifically, the issue occurs during table unregistration, where a table blob may be freed prematurely, leading to a potential crash. The problem arises because the find table lock function can return a valid table with a non-zero return value, which is not handled correctly, resulting in the use of the freed memory. A Syzbot report indicates a kernel address sanitizer (KASAN) detection of a vmalloc-out-of-bounds read in the ebt unregister table function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.