Lucene search
Redhat.comRH:CVE-2023-52581HistoryMar 04, 2024 - 6:27 p.m.
CVE-2023-52581
2024-03-0418:27:36
redhat.com
access.redhat.com
2
linux kernel
nftables
use-after-free
local attacker
crash
system
race problem
set gc
transaction
source code
mitigation
blacklist mechanism
A use-after-free flaw was found in the Linux kernel’s nftables sub-component due to a race problem between the set GC and transaction in the Linux Kernel. This flaw allows a local attacker to crash the system. This flaw is similar to the previous CVE-2023-4244 but for a different part of the source code.
Mitigation
Mitigation for this issue is to skip loading the affected module "nftables" onto the system until we have an available fix. This can be done by a blacklist mechanism and will ensure the driver is not loaded at the boot time.
How do I blacklist a kernel module to prevent it from loading automatically?
https://access.redhat.com/solutions/41278
Related
debiancve
debiancve
CVE-2023-52581
2024-03-02 22:15:49
CVE-2023-4244
2023-09-06 14:15:11
ubuntucve
ubuntucve
prion
prion
Buffer overflow
2024-03-02 22:15:00
Race condition
2023-09-06 14:15:00
Design/Logic Flaw
2023-09-14 20:15:00
cve
cve
cvelist
cvelist
cnvd
cnvd
Linux kernel elevation of privilege vulnerability (CNVD-2023-70083)
2023-09-11 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-4244 affecting package kernel for versions less than 5.15.135.1-2
2023-11-08 02:07:28
redhatcve
redhatcve
nessus
nessus
Fedora 37 : kernel (2023-a1ca0ef4d6)
2023-09-03 00:00:00
Fedora 38 : kernel (2023-da8b7c1ca3)
2023-09-03 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2023-028)
2023-10-18 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0490
2023-10-14 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0111
2023-10-10 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-11-21 00:00:00
Linux kernel (Azure) vulnerabilities
2024-01-09 00:00:00
Linux kernel (OEM) vulnerabilities
2023-10-31 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6503-1)
2023-11-22 00:00:00
Ubuntu: Security Advisory (USN-6572-1)
2024-01-10 00:00:00
Ubuntu: Security Advisory (USN-6461-1)
2023-11-01 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2024-02-12 00:00:00
Unbreakable Enterprise kernel-container security update
2024-02-12 00:00:00
Unbreakable Enterprise kernel-container security update
2024-02-12 00:00:00
osv
osv
linux-azure vulnerabilities
2024-01-09 18:04:06
linux, linux-aws, linux-laptop, linux-lowlatency, linux-oem-6.5, linux-oracle, linux-raspi, linux-starfive vulnerabilities
2023-11-21 19:58:21
linux-oem-6.1 vulnerabilities
2023-10-31 12:51:27
redhat
redhat
(RHSA-2024:1018) Important: kernel security update
2024-02-28 12:25:01
(RHSA-2024:1019) Important: kernel-rt security update
2024-02-28 12:25:09
(RHSA-2024:1248) Important: kernel security update
2024-03-12 00:03:02
rocky
rocky
kernel security update
2024-03-27 04:37:19
chrome
chrome
Stable Channel Update for ChromeOS/ChromeOS Flex
2023-11-14 00:00:00
amazon
amazon
Important: kernel
2023-09-27 22:15:00
Important: kernel
2023-09-27 22:48:00
debian
debian
[SECURITY] [DLA 3710-1] linux security update
2024-01-11 18:20:25
[SECURITY] [DLA 3623-1] linux-5.10 security update
2023-10-19 21:24:31
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2023-11-21 21:37:49