cbcvebase.
CVE-2023-6817
published 2023-12-18

CVE-2023-6817: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free. We recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.

Affected

32 ranges· showing 25
VendorProductVersion rangeFixed in
debianlinux< linux 6.1.69-1 (bookworm)linux 6.1.69-1 (bookworm)
googlechrome_chrome
linuxkernel>= 5.6 < 6.76.7
linuxlinux_kernel
linuxlinux_kernel>= 0 < 5.10.205-25.10.205-2
linuxlinux_kernel>= 0 < 6.1.69-16.1.69-1
linuxlinux_kernel>= 0 < 6.6.8-16.6.8-1
linuxlinux_kernel>= 0 < 6.6.8-16.6.8-1
linuxlinux_kernel>= 0 < 5.4.2515.4.251
linuxlinux_kernel>= 0 < 5.15.0-92.1025.15.0-92.102
linuxlinux_kernel>= 0 < 4.4.0-251.2854.4.0-251.285
linuxlinux_kernel>= 0 < 4.4.0-250.2844.4.0-250.284
linuxlinux_kernel>= 0 < 4.15.0-222.2334.15.0-222.233
linuxlinux_kernel>= 0 < 4.15.0-221.2324.15.0-221.232
linuxlinux_kernel>= 0 < 5.4.0-172.1905.4.0-172.190
linuxlinux_kernel>= 0 < 5.4.0-170.1885.4.0-170.188
linuxlinux_kernel>= 0 < 5.4.0-176.1965.4.0-176.196
linuxlinux_kernel>= 0 < 5.15.0-97.1075.15.0-97.107
linuxlinux_kernel>= 0 < 5.15.0-94.1045.15.0-94.104
linuxlinux_kernel>= 0 < 5.15.0-102.1125.15.0-102.112
linuxlinux_kernel>= 5.11 < 5.15.1435.15.143
linuxlinux_kernel>= 5.11.0 < 6.1.426.1.42
linuxlinux_kernel>= 5.16 < 6.1.686.1.68
linuxlinux_kernel>= 5.16.0 < 6.4.76.4.7
linuxlinux_kernel>= 5.5.0 < 5.10.1885.10.188

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.1HIGH