« List of all CVEs

CVE-2023-39194

Kernel: xfrm: out-of-bounds read in __xfrm_state_filter_match()

Published: 10/9/2023 Last updated: 11/6/2025 Reserved: 7/25/2023

A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which can result in a read past the end of an allocated buffer. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, potentially leading to an information disclosure.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 3.2 Low CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (16)

Product Vendor Version
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat 12.4(24)MDB5a
Red Hat Enterprise Linux 6 Red Hat 12.2(33)IRG1
Red Hat Enterprise Linux 7 Red Hat n/a
Red Hat Enterprise Linux 6 Red Hat n/a
Red Hat Enterprise Linux 7 Red Hat 0.2.5.x before 0.2.5.12
Red Hat Enterprise Linux 8 Red Hat < 10.0.19044.4894
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat before 0.2.4.27
Red Hat Enterprise Linux 8 Red Hat 15.0(2)SG4
Red Hat Enterprise Linux 9 Red Hat >=14.2, <14.2.5
Red Hat Enterprise Linux 7 Red Hat 20.0.2019.3.15
Red Hat Enterprise Linux 9 Red Hat 0.2.6.x before 0.2.6.7
Red Hat Enterprise Linux 8 Red Hat 12.2(33)SCE4
Red Hat Enterprise Linux 7 Red Hat < 8.x-1.2
Red Hat Enterprise Linux 8 Red Hat < 6.3.9600.20069

References (26)