Lucene search

K
cvelistRedhatCVELIST:CVE-2023-6356
HistoryFeb 07, 2024 - 9:04 p.m.

CVE-2023-6356 Kernel: null pointer dereference in nvmet_tcp_build_iovec

2024-02-0721:04:20
CWE-476
redhat
www.cve.org
11
linux
nvme driver
tcp
crafted packages
kernel panic
denial of service

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

45.2%

A flaw was found in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service.

CNA Affected

[
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel-rt",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.18.0-513.18.1.rt7.320.el8_9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:8::realtime",
      "cpe:/a:redhat:enterprise_linux:8::nfv"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.18.0-513.18.1.el8_9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8::baseos",
      "cpe:/a:redhat:enterprise_linux:8::crb"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.18.0-372.91.1.el8_6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/o:redhat:rhel_eus:8.6::baseos",
      "cpe:/a:redhat:rhel_eus:8.6::crb",
      "cpe:/o:redhat:rhev_hypervisor:4.4::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.18.0-477.58.1.el8_8",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/o:redhat:rhel_eus:8.8::baseos",
      "cpe:/a:redhat:rhel_eus:8.8::crb"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:5.14.0-362.24.1.el9_3",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::realtime",
      "cpe:/o:redhat:enterprise_linux:9::baseos",
      "cpe:/a:redhat:enterprise_linux:9::nfv",
      "cpe:/a:redhat:enterprise_linux:9::appstream",
      "cpe:/a:redhat:enterprise_linux:9::crb"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:5.14.0-362.24.1.el9_3",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::realtime",
      "cpe:/o:redhat:enterprise_linux:9::baseos",
      "cpe:/a:redhat:enterprise_linux:9::nfv",
      "cpe:/a:redhat:enterprise_linux:9::appstream",
      "cpe:/a:redhat:enterprise_linux:9::crb"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:5.14.0-284.52.1.el9_2",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:9.2::crb",
      "cpe:/a:redhat:rhel_eus:9.2::appstream",
      "cpe:/o:redhat:rhel_eus:9.2::baseos"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel-rt",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:5.14.0-284.52.1.rt14.337.el9_2",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:9.2::realtime",
      "cpe:/a:redhat:rhel_eus:9.2::nfv"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Virtualization 4 for Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:4.18.0-372.91.1.el8_6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/o:redhat:rhel_eus:8.6::baseos",
      "cpe:/a:redhat:rhel_eus:8.6::crb",
      "cpe:/o:redhat:rhev_hypervisor:4.4::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/cluster-logging-operator-bundle",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-22",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/cluster-logging-rhel9-operator",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-11",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/elasticsearch6-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v6.8.1-407",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/elasticsearch-operator-bundle",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-19",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/elasticsearch-proxy-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v1.0.0-479",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/elasticsearch-rhel9-operator",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-7",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/eventrouter-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v0.4.0-247",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/fluentd-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-5",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/log-file-metric-exporter-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v1.1.0-227",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/logging-curator5-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.1-470",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/logging-loki-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v2.9.6-14",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/logging-view-plugin-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-2",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/loki-operator-bundle",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-24",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/loki-rhel9-operator",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v5.8.6-10",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/lokistack-gateway-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v0.1.0-525",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/opa-openshift-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v0.1.0-224",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.8-RHEL-9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/vector-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v0.28.1-56",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.8::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel-rt",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "kernel-rt",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  }
]

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

45.2%