CVE-2023-6040

Updated: 2024-02-08 19:24:43.738538

Description:

An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported family); While creating a new netfilter table, lack of a safeguard against invalid nf_tables family (pf) values within `nf_tables_newtable` function enables an attacker to achieve out-of-bounds access.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 7.8

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 7.8 HIGH In Testing 2024-02-28 08:40:27
AlmaLinux 9.2 FIPS kernel 5.14.0 7.8 HIGH In Testing 2024-02-28 08:40:27
CentOS 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-02-14 10:09:01
CentOS 7 ELS kernel 3.10.0 7.8 HIGH Needs Triage 2024-01-23 03:02:27
CentOS 8.4 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2024:1707478061 2024-02-09 08:26:43
CentOS 8.5 ELS kernel 4.18.0 7.8 HIGH Released CLSA-2024:1707478721 2024-02-09 08:26:44
CloudLinux 6 ELS kernel 2.6.32 7.8 HIGH Needs Triage 2024-01-23 03:02:21
Oracle Linux 6 ELS kernel 2.6.32 7.8 HIGH Not Vulnerable 2024-02-14 10:09:01
Ubuntu 16.04 ELS linux 4.4.0 7.8 HIGH Released CLSA-2024:1706545934 2024-01-29 13:10:22
Ubuntu 16.04 ELS linux-hwe 4.15.0 7.8 HIGH Released CLSA-2024:1706624217 2024-01-30 10:09:20
Total: 11