cbcvebase.
CVE-2023-3773
published 2023-07-25

CVE-2023-3773: A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN…

medium4.4CVSS 3.1
AVLACLPRHUINSUCHINAN
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read of XFRMA_MTIMER_THRESH when parsing netlink attributes, leading to potential leakage of sensitive heap data to userspace.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
debiandebian_linux
debiandebian_linux
debianlinux< linux 6.1.52-1 (bookworm)linux 6.1.52-1 (bookworm)
debianlinux< linux 6.4.11-1 (forky)linux 6.4.11-1 (forky)
linuxlinux
linuxlinux>= 13b00b135665c92065a27c0c39dd97e0f380bd4f < 8ad9bc25cbdcec72e7ca43dd8281decb69ea9a708ad9bc25cbdcec72e7ca43dd8281decb69ea9a70
linuxlinux>= 13b00b135665c92065a27c0c39dd97e0f380bd4f < ccb533b7070aeeb65c66ea5d590e9c62421dcd61ccb533b7070aeeb65c66ea5d590e9c62421dcd61
linuxlinux>= 13b00b135665c92065a27c0c39dd97e0f380bd4f < b3003e1b54e057f5f3124e437b80c3bef26ed3feb3003e1b54e057f5f3124e437b80c3bef26ed3fe
linuxlinux_kernel
linuxlinux_kernel>= 0 < 5.10.197-15.10.197-1
linuxlinux_kernel>= 0 < 6.1.52-16.1.52-1
linuxlinux_kernel>= 0 < 6.4.13-16.4.13-1
linuxlinux_kernel>= 0 < 6.4.11-16.4.11-1
linuxlinux_kernel>= 0 < 6.4.13-16.4.13-1
linuxlinux_kernel>= 0 < 6.4.11-16.4.11-1
linuxlinux_kernel>= 0 < 5.15.0-91.1015.15.0-91.101
linuxlinux_kernel>= 5.15.198 < 6.1.476.1.47
linuxlinux_kernel>= 5.19.0 < 6.1.476.1.47
linuxlinux_kernel>= 6.1 < 6.1.476.1.47
linuxlinux_kernel>= 6.2 < 6.4.126.4.12
linuxlinux_kernel>= 6.2.0 < 6.4.126.4.12
linuxlinux_kernel>= 6.4 < 6.4.86.4.8
msrccbl2_hyperv-daemons_5.15.153.1-1_on_cbl_mariner_2.0
msrccbl2_hyperv-daemons_5.15.158.1-1_on_cbl_mariner_2.0
msrccbl_mariner_2.0_arm

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd4.4MEDIUM
osv4.7MEDIUM