4 matches found
CVE-2023-53733
CVE-2023-53733 affects the Linux kernel net: sched: cls_u32 path. Root cause: when u32_replace_hw_knode fails, the tcf_bind_filter operation performed during u32_set_parms is not undone, per the description. The EulerOS/OpenVAS/Nessus entries corroborate this CVE as part of kernel advisories, but...
CVE-2023-3609
A double-free flaw was found in u32setparms in net/sched/clsu32.c in the Network Scheduler component in the Linux kernel. This flaw allows a local attacker to use a failure event to mishandle the reference counter, leading to a local privilege escalation threat. Mitigation To mitigate this issue,...
CVE-2023-3609
A use-after-free vulnerability in the Linux kernel's net/sched: clsu32 component can be exploited to achieve local privilege escalation. If tcfchangeindev fails, u32setparms will immediately return an error after incrementing or decrementing the reference counter in tcfbindfilter. If an attacker...
CVE-2023-3609 Use-after-free in Linux kernel's net/sched: cls_u32 component
A use-after-free vulnerability in the Linux kernel's net/sched: clsu32 component can be exploited to achieve local privilege escalation. If tcfchangeindev fails, u32setparms will immediately return an error after incrementing or decrementing the reference counter in tcfbindfilter. If an attacker...