Lucene search

[email protected]NVD:CVE-2023-4806

HistorySep 18, 2023 - 5:15 p.m.

CVE-2023-4806

2023-09-1817:15:55

CWE-416

[email protected]

web.nvd.nist.gov

glibc

getaddrinfo

memory access

nss module

ipv6

ipv4

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.9%

JSON

A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the nss_gethostbyname2_r and nss_getcanonname_r hooks without implementing the nss*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.

Affected configurations

NVD

Node

gnuglibcMatch2.33

Node

redhatcodeready_linux_builder_eusMatch9.2

redhatcodeready_linux_builder_eus_for_power_little_endianMatch9.0_ppc64le

redhatcodeready_linux_builder_eus_for_power_little_endian_eusMatch9.2_ppc64le

redhatcodeready_linux_builder_for_arm64Match9.0_aarch64

redhatcodeready_linux_builder_for_arm64_eusMatch9.2_aarch64

redhatcodeready_linux_builder_for_ibm_z_systemsMatch9.0_s390x

redhatcodeready_linux_builder_for_ibm_z_systems_eusMatch9.2_s390x

redhatenterprise_linuxMatch7.0

redhatenterprise_linuxMatch8.0

redhatenterprise_linuxMatch9.0

redhatenterprise_linux_eusMatch8.8

redhatenterprise_linux_eusMatch9.2

redhatenterprise_linux_for_arm_64Match9.0_aarch64

redhatenterprise_linux_for_arm_64_eusMatch9.2_aarch64

redhatenterprise_linux_for_ibm_z_systemsMatch8.0_s390x

redhatenterprise_linux_for_ibm_z_systems_eusMatch8.8_s390x

redhatenterprise_linux_for_ibm_z_systems_eus_s390xMatch9.2

redhatenterprise_linux_for_ibm_z_systems_s390xMatch9.2

redhatenterprise_linux_for_power_little_endianMatch8.0_ppc64le

redhatenterprise_linux_for_power_little_endianMatch9.2_ppc64le

redhatenterprise_linux_for_power_little_endian_eusMatch8.8_ppc64le

redhatenterprise_linux_for_power_little_endian_eusMatch9.2_ppc64le

redhatenterprise_linux_server_ausMatch9.2

redhatenterprise_linux_server_for_power_little_endian_update_services_for_sap_solutionsMatch9.2_ppc64le

redhatenterprise_linux_tusMatch8.8

Node

fedoraprojectfedoraMatch37

fedoraprojectfedoraMatch38

fedoraprojectfedoraMatch39

References

www.openwall.com/lists/oss-security/2023/10/03/4

www.openwall.com/lists/oss-security/2023/10/03/5

www.openwall.com/lists/oss-security/2023/10/03/6

www.openwall.com/lists/oss-security/2023/10/03/8

access.redhat.com/errata/RHSA-2023:5453

access.redhat.com/errata/RHSA-2023:5455

access.redhat.com/errata/RHSA-2023:7409

access.redhat.com/security/cve/CVE-2023-4806

bugzilla.redhat.com/show_bug.cgi?id=2237782

lists.fedoraproject.org/archives/list/[email protected]/message/4DBUQRRPB47TC3NJOUIBVWUGFHBJAFDL/

lists.fedoraproject.org/archives/list/[email protected]/message/DFG4P76UHHZEWQ26FWBXG76N2QLKKPZA/

lists.fedoraproject.org/archives/list/[email protected]/message/NDAQWHTSVOCOZ5K6KPIWKRT3JX4RTZUR/

security.gentoo.org/glsa/202310-03

security.netapp.com/advisory/ntap-20240125-0008/

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.9%

JSON

Related for NVD:CVE-2023-4806