CVE-2023-42753Out-of-bounds Write in Kernel

CWE-787Out-of-bounds Write45 documents12 sources
Severity
7.8HIGHNVD
CNA7.0OSV7.0OSV5.7OSV5.5OSV4.7
EPSS
0.0%
top 97.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Linux KernelDebian LinuxRedhat Enterprise Linux
Timeline
PublishedSep 25
Latest updateJun 11

Description

An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->nets` array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

NVDlinux/linux_kernel4.4.1654.5+9
Debianlinux/linux_kernel< 5.10.197-1+3
Ubuntulinux/linux_kernel< 5.4.0-165.182+3

Also affects: Debian Linux 10.0, Enterprise Linux 7.0, 8.0, 9.0

🔴Vulnerability Details

21
OSV
linux-nvidia-6.2 vulnerabilities2023-10-31
OSV
linux-iot, linux-raspi, linux-raspi-5.4 vulnerabilities2023-10-30
OSV
linux-oracle-5.15 vulnerabilities2023-10-26
OSV
linux-aws-hwe vulnerabilities2023-10-25
OSV
linux-intel-iotg-5.15 vulnerabilities2023-10-24

📋Vendor Advisories

21
CISA ICS
ABB M2M Gateway2025-04-15
Ubuntu
Kernel Live Patch Security Notice2023-11-28
Ubuntu
Linux kernel (NVIDIA) vulnerabilities2023-10-31
Ubuntu
Linux kernel vulnerabilities2023-10-30
Ubuntu
Linux kernel (Oracle) vulnerabilities2023-10-26

📄Research Papers

1
arXiv
Mono: Is Your "Clean" Vulnerability Dataset Really Solvable? Exposing and Trapping Undecidable Patches and Beyond2025-06-11

💬Community

1
Bugzilla
CVE-2023-42753 kernel: netfilter: potential slab-out-of-bound access due to integer underflow2023-09-20
CVE-2023-42753 — Out-of-bounds Write in Linux Kernel | cvebase