CVE-2023-6817

HIGH7.8

Use-after-free in Linux kernel's netfilter: nf_tables component

Published Dec 18, 2023

Modified 11 months ago

No fix available

Details

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

The function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free.

We recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.

References

WEBhttp://packetstormsecurity.com/files/177029/Kernel-Live-Patch-Security-Notice-LSN-0100-1.html WEBhttp://www.openwall.com/lists/oss-security/2023/12/22/13 WEBhttp://www.openwall.com/lists/oss-security/2023/12/22/6 FIXhttps://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=317eb9685095678f2c9f5a8189de698c5354316a WEBhttps://kernel.dance/317eb9685095678f2c9f5a8189de698c5354316a WEBhttps://lists.debian.org/debian-lts-announce/2024/01/msg00005.html ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2023-6817

CVSS Analysis

CVSS v3.1

7.8

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

HighA:H

7.8/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weakness Type (CWE)

Memory Safety

CWE-416

Use After Free

Ecosystems

Timeline

PublishedDec 18, 2023

ModifiedFeb 13, 2025

CVE-2023-6817 | Mondoo Vulnerability Intelligence