Lucene search

K
redhatcveRedhat.comRH:CVE-2023-4881
HistorySep 11, 2023 - 12:35 p.m.

CVE-2023-4881

2023-09-1112:35:45
redhat.com
access.redhat.com
9
cve-2023-4881
stack based
netfilter subsystem
linux kernel
out-of-bounds write
information disclosure
denial of service

0.0004 Low

EPSS

Percentile

9.0%

A stack based out-of-bounds write flaw was found in the netfilter subsystem in the Linux kernel. If the expression length is a multiple of 4 (register size), the nft_exthdr_eval family of functions writes 4 NULL bytes past the end of the regs argument, leading to stack corruption and potential information disclosure or a denial of service.