CVE-2023-4147

Version	Score	Severity	Vector String
3.1	7.8	High	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Product	Vendor	Version
Red Hat Enterprise Linux 8	Red Hat	version 1803 (Core Installation)
Red Hat Enterprise Linux 9	Red Hat	< 6.1.7601.26623
Red Hat Enterprise Linux 9.0 Extended Update Support	Red Hat	SA6155P
Red Hat Enterprise Linux 6	Red Hat	< 6.1.7601.26623
Red Hat Enterprise Linux 7	Red Hat	SA8150P
Red Hat Enterprise Linux 8	Red Hat	SA8155
Red Hat Enterprise Linux 9	Red Hat	10 Version 1809 for 32-bit Systems
Red Hat Enterprise Linux 9.0 Extended Update Support	Red Hat	7.2.0
Red Hat Enterprise Linux 6	Red Hat	10 for x64-based Systems
Red Hat Enterprise Linux 7	Red Hat	< 10.0.17763.2803
Red Hat Enterprise Linux 9	Red Hat	<= 2.2.6
Red Hat Enterprise Linux 9	Red Hat	<= 8.8.11
Red Hat Enterprise Linux 9.0 Extended Update Support	Red Hat	10 for 32-bit Systems
Red Hat Enterprise Linux 7	Red Hat	Android-11 Android-12
Red Hat Enterprise Linux 9	Red Hat	SA6150P
Red Hat Enterprise Linux 9.0 Extended Update Support	Red Hat	<=4.4.0
Red Hat Enterprise Linux 8	Red Hat	20241118
Red Hat Enterprise Linux 9.0 Extended Update Support	Red Hat	<= 3.0.0
Red Hat Enterprise Linux 9	Red Hat	SA6155
Red Hat Enterprise Linux 9.0 Extended Update Support	Red Hat	SA8145P
Red Hat Enterprise Linux 9	Red Hat	n/a

https://access.redhat.com/errata/RHSA-2023:5069
https://access.redhat.com/errata/RHSA-2023:5091
https://access.redhat.com/errata/RHSA-2023:5093
https://access.redhat.com/errata/RHSA-2023:7382
https://access.redhat.com/errata/RHSA-2023:7389
https://access.redhat.com/errata/RHSA-2023:7411
https://access.redhat.com/security/cve/CVE-2023-4147
https://bugzilla.redhat.com/show_bug.cgi?id=2225239
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ebc1064e4874d5987722a2ddbc18f94aa53b211
https://www.spinics.net/lists/stable/msg671573.html
https://access.redhat.com/errata/RHSA-2023:5069
https://access.redhat.com/errata/RHSA-2023:5091
https://access.redhat.com/errata/RHSA-2023:5093
https://access.redhat.com/errata/RHSA-2023:7382
https://access.redhat.com/errata/RHSA-2023:7389
https://access.redhat.com/errata/RHSA-2023:7411
https://access.redhat.com/security/cve/CVE-2023-4147
https://bugzilla.redhat.com/show_bug.cgi?id=2225239
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ebc1064e4874d5987722a2ddbc18f94aa53b211
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
https://security.netapp.com/advisory/ntap-20231020-0006/
https://www.debian.org/security/2023/dsa-5480
https://www.debian.org/security/2023/dsa-5492
https://www.spinics.net/lists/stable/msg671573.html
https://access.redhat.com/errata/RHSA-2023:5069
https://access.redhat.com/errata/RHSA-2023:5091
https://access.redhat.com/errata/RHSA-2023:5093
https://access.redhat.com/errata/RHSA-2023:7382
https://access.redhat.com/errata/RHSA-2023:7389
https://access.redhat.com/errata/RHSA-2023:7411
https://access.redhat.com/security/cve/CVE-2023-4147
https://bugzilla.redhat.com/show_bug.cgi?id=2225239
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ebc1064e4874d5987722a2ddbc18f94aa53b211
https://www.spinics.net/lists/stable/msg671573.html
https://access.redhat.com/errata/RHSA-2023:5069
https://access.redhat.com/errata/RHSA-2023:5091
https://access.redhat.com/errata/RHSA-2023:5093
https://access.redhat.com/errata/RHSA-2023:7382
https://access.redhat.com/errata/RHSA-2023:7389
https://access.redhat.com/errata/RHSA-2023:7411
https://access.redhat.com/security/cve/CVE-2023-4147
https://bugzilla.redhat.com/show_bug.cgi?id=2225239
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ebc1064e4874d5987722a2ddbc18f94aa53b211
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
https://security.netapp.com/advisory/ntap-20231020-0006/
https://www.debian.org/security/2023/dsa-5480
https://www.debian.org/security/2023/dsa-5492
https://www.spinics.net/lists/stable/msg671573.html

Kernel: netfilter: nf_tables_newrule when adding a rule with nfta_rule_chain_id leads to use-after-free

Metrics

Opam packages affected (27)

Products affected (21)

References (48)