CVE-2023-4881

Updated: 2023-09-18 23:39:11.842238

Description:

A stack based out-of-bounds write flaw was found in the netfilter subsystem in the Linux kernel. If the expression length is a multiple of 4 (register size), the `nft_exthdr_eval` family of functions writes 4 NULL bytes past the end of the `regs` argument, leading to stack corruption and potential information disclosure or a denial of service.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.1

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 7.1 HIGH Ignored 2024-01-19 16:11:01
AlmaLinux 9.2 FIPS kernel 5.14.0 7.1 HIGH Ignored 2024-01-19 16:10:01
CentOS 6 ELS kernel 2.6.32 7.1 HIGH Not Vulnerable 2023-12-26 13:11:32
CentOS 7 ELS kernel 3.10.0 7.1 HIGH Needs Triage 2023-10-26 17:35:17
CentOS 8.4 ELS kernel 4.18.0 7.1 HIGH Released CLSA-2023:1701963303 2023-12-07 13:14:42
CentOS 8.5 ELS kernel 4.18.0 7.1 HIGH Released CLSA-2023:1701962635 2023-12-07 13:14:43
CloudLinux 6 ELS kernel 2.6.32 7.1 HIGH Needs Triage 2023-10-26 17:35:13
Oracle Linux 6 ELS kernel 2.6.32 7.1 HIGH Not Vulnerable 2023-12-26 13:11:30
Ubuntu 16.04 ELS linux 4.4.0 7.1 HIGH Released CLSA-2023:1698247974 2023-10-25 14:06:44
Ubuntu 16.04 ELS linux-hwe 4.15.0 7.1 HIGH Released CLSA-2023:1698305104 2023-10-26 07:38:40
Total: 11