« List of all CVEs

CVE-2023-4806

Glibc: potential use-after-free in getaddrinfo()

Published: 9/18/2023 Last updated: 11/20/2025 Reserved: 9/6/2023

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 5.9 Medium CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Opam packages affected (1)

gettext-stub

Products affected (24)

Product Vendor Version
Red Hat Enterprise Linux 6 Red Hat <= 6.12.*
Red Hat Enterprise Linux 7 Red Hat QCA6574
Red Hat Enterprise Linux 7 Red Hat <= *
Red Hat Enterprise Linux 6 Red Hat QCA6564A
Red Hat Enterprise Linux 9 Red Hat QCA6426
Red Hat Enterprise Linux 9 Red Hat QCA6430
Red Hat Enterprise Linux 9 Red Hat QCA6431
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Red Hat QCA6436
Red Hat Enterprise Linux 6 Red Hat QCA6564AU
Red Hat Enterprise Linux 7 Red Hat QCA6574A
Red Hat Enterprise Linux 8 Red Hat <= 6.0.*
Red Hat Enterprise Linux 8 Red Hat <= 6.1.*
Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat <= *
Red Hat Enterprise Linux 9 Red Hat < 2cde98a02da958357fe240a6ba269b69d913b6ba
Red Hat Enterprise Linux 9 Red Hat < 923c267bdbb64f65bc1149d184efcf8b047d7d64
Red Hat Enterprise Linux 9 Red Hat < f6486338fde3f04ed0ec59fe67a69a208c32734f
Red Hat Enterprise Linux 9 Red Hat 6.8
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Red Hat < 6.8
Red Hat Enterprise Linux 6 Red Hat <= 6.16.*
Red Hat Enterprise Linux 8 Red Hat QCA6335
Red Hat Enterprise Linux 7 Red Hat V1.0.9
Red Hat Enterprise Linux 8 Red Hat QCA6391
Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat QCA6420
Red Hat Enterprise Linux 9 Red Hat QCA6421

References (40)

Credits (2)