A use-after-free vulnerability in the Linux kernel’s netfilter: nf_tables
component can be exploited to achieve local privilege escalation. The
function nft_pipapo_walk did not skip inactive elements during set walk
which could lead double deactivations of PIPAPO (Pile Packet Policies)
elements, leading to use-after-free. We recommend upgrading past commit
317eb9685095678f2c9f5a8189de698c5354316a.
Author | Note |
---|---|
Priority reason: By using unprivileged user namespaces, this can be exploited to achieve local privilege escalation. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 22.04 | noarch | linux | <Â 5.15.0-92.102 | UNKNOWN |
ubuntu | 23.10 | noarch | linux | <Â 6.5.0-15.15 | UNKNOWN |
ubuntu | 24.04 | noarch | linux | <Â any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | <Â 5.15.0-1052.57 | UNKNOWN |
ubuntu | 23.10 | noarch | linux-aws | <Â 6.5.0-1012.12 | UNKNOWN |
ubuntu | 24.04 | noarch | linux-aws | <Â any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws-5.15 | <Â 5.15.0-1052.57~20.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws-6.2 | <Â 6.2.0-1018.18~22.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws-6.5 | <Â any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure | <Â 5.15.0-1054.62 | UNKNOWN |
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=317eb9685095678f2c9f5a8189de698c5354316a
kernel.dance/#317eb9685095678f2c9f5a8189de698c5354316a
launchpad.net/bugs/cve/CVE-2023-6817
nvd.nist.gov/vuln/detail/CVE-2023-6817
security-tracker.debian.org/tracker/CVE-2023-6817
ubuntu.com/security/notices/USN-6606-1
ubuntu.com/security/notices/USN-6607-1
ubuntu.com/security/notices/USN-6608-1
ubuntu.com/security/notices/USN-6608-2
ubuntu.com/security/notices/USN-6609-1
ubuntu.com/security/notices/USN-6609-2
ubuntu.com/security/notices/USN-6609-3
ubuntu.com/security/notices/USN-6628-1
ubuntu.com/security/notices/USN-6628-2
ubuntu.com/security/notices/USN-6635-1
www.cve.org/CVERecord?id=CVE-2023-6817
www.openwall.com/lists/oss-security/2023/12/22/6