cbcvebase.
CVE-2023-4921
published 2023-09-12

CVE-2023-4921: A use-after-free vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. When the plug qdisc…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A use-after-free vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq_dequeue() due to the incorrect .peek handler of sch_plug and lack of error checking in agg_dequeue(). We recommend upgrading past commit 8fc134fee27f2263988ae38920bc03da416b03d8.

Affected

26 ranges· showing 25
VendorProductVersion rangeFixed in
debiandebian_linux
debianlinux< linux 6.1.55-1 (bookworm)linux 6.1.55-1 (bookworm)
linuxkernel>= 3.8 < 6.66.6
linuxlinux_kernel>= 0 < 5.10.197-15.10.197-1
linuxlinux_kernel>= 0 < 6.1.55-16.1.55-1
linuxlinux_kernel>= 0 < 6.5.6-16.5.6-1
linuxlinux_kernel>= 0 < 6.5.6-16.5.6-1
linuxlinux_kernel>= 0 < 5.4.0-165.1825.4.0-165.182
linuxlinux_kernel>= 0 < 5.15.0-87.975.15.0-87.97
linuxlinux_kernel>= 0 < 6.5.0-10.106.5.0-10.10
linuxlinux_kernel>= 0 < 3.13.0-197.2483.13.0-197.248
linuxlinux_kernel>= 0 < 4.4.0-246.2804.4.0-246.280
linuxlinux_kernel>= 0 < 4.15.0-219.2304.15.0-219.230
linuxlinux_kernel>= 3.8 < 4.14.3264.14.326
linuxlinux_kernel>= 4.15 < 4.19.2954.19.295
linuxlinux_kernel>= 4.20 < 5.4.2575.4.257
linuxlinux_kernel>= 5.11 < 5.15.1325.15.132
linuxlinux_kernel>= 5.16 < 6.1.546.1.54
linuxlinux_kernel>= 5.5 < 5.10.1955.10.195
linuxlinux_kernel>= 6.2 < 6.5.46.5.4
msrccbl2_kernel_5.15.133.1-1_on_cbl_mariner_2.0
paloaltopan-os
pimcorepimcore>= 0 < 10.5.2110.5.21
ubuntulinux-gcp-5.15
ubuntulinux-gkeop-5.15

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH