This CVE ID has been rejected or withdrawn by its CVE Numbering Authority
because it is a duplicate of CVE-2023-4147.
Author | Note |
---|---|
Priority reason: By using unprivileged user namespaces, this can be exploited to achieve local privilege escalation. | |
rodrigo-zaiden | Google kCTF submission same fix commit as CVE-2023-4147, one or the other will likely be marked as duplicated. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | linux-hwe | < any | UNKNOWN |
ubuntu | upstream | noarch | linux-hwe | < 6.5~rc4 | UNKNOWN |
ubuntu | upstream | noarch | linux-hwe-5.4 | < 6.5~rc4 | UNKNOWN |
ubuntu | upstream | noarch | linux-hwe-5.15 | < 6.5~rc4 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-hwe-5.15 | < 5.15.0-82.91~20.04.1 | UNKNOWN |
ubuntu | upstream | noarch | linux-hwe-5.19 | < 6.5~rc4 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-hwe-5.19 | < any | UNKNOWN |
ubuntu | upstream | noarch | linux-hwe-edge | < 6.5~rc4 | UNKNOWN |
ubuntu | upstream | noarch | linux-lts-xenial | < 6.5~rc4 | UNKNOWN |
ubuntu | upstream | noarch | linux-kvm | < 6.5~rc4 | UNKNOWN |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3995
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ebc1064e4874d5987722a2ddbc18f94aa53b211
google.github.io/security-research/kernelctf/rules
launchpad.net/bugs/cve/CVE-2023-3995
nvd.nist.gov/vuln/detail/CVE-2023-3995
patchwork.ozlabs.org/project/netfilter-devel/patch/[email protected]/
security-tracker.debian.org/tracker/CVE-2023-3995
ubuntu.com/security/notices/USN-6315-1
ubuntu.com/security/notices/USN-6316-1
ubuntu.com/security/notices/USN-6318-1
ubuntu.com/security/notices/USN-6321-1
ubuntu.com/security/notices/USN-6325-1
ubuntu.com/security/notices/USN-6328-1
ubuntu.com/security/notices/USN-6330-1
ubuntu.com/security/notices/USN-6332-1
ubuntu.com/security/notices/USN-6348-1
ubuntu.com/security/notices/USN-6385-1