7.8

CVE-2023-4004

Kernel: netfilter: use-after-free due to improper element removal in nft_pipapo_remove()

A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potentially escalate their privileges on the system.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.6 < 5.10.188
LinuxLinux Kernel Version >= 5.11 < 5.15.123
LinuxLinux Kernel Version >= 5.16 < 6.1.42
LinuxLinux Kernel Version >= 6.2 < 6.4.7
FedoraprojectFedora Version38
RedhatEnterprise Linux Version8.0
RedhatEnterprise Linux Version9.0
NetappH300s Version-
NetappH410s Version-
NetappH500s Version-
NetappH700s Version-
DebianDebian Linux Version10.0
DebianDebian Linux Version11.0
DebianDebian Linux Version12.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.95% 0.569
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
secalert@redhat.com 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
https://www.debian.org/security/2023/dsa-5480
http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSN-0099-1.html
https://www.debian.org/security/2023/dsa-5492
http://packetstormsecurity.com/files/175072/Kernel-Live-Patch-Security-Notice-LSN-0098-1.html
https://access.redhat.com/errata/RHSA-2023:7382
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:7389
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:7411
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2023:4961
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:4962
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:4967
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5069
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5091
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5093
Third Party Advisory
Broken Link
https://access.redhat.com/errata/RHSA-2023:5221
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5244
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5255
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5548
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5627
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:7417
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2023:7431
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2023:7434
Third Party Advisory
VDB Entry
https://access.redhat.com/security/cve/CVE-2023-4004
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2225275
Third Party Advisory
Issue Tracking
https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230719190824.21196-1-fw@strlen.de/
Patch
Third Party Advisory
Mailing List
https://security.netapp.com/advisory/ntap-20231027-0001/