« List of all CVEs

CVE-2023-4806

Glibc: potential use-after-free in getaddrinfo()

Published: 9/18/2023 Last updated: 5/12/2026 Reserved: 9/6/2023

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 5.9 Medium CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Opam packages affected (1)

gettext-stub

Products affected (24)

Product Vendor Version
Red Hat Enterprise Linux 6 Red Hat 3.13.6aS
Red Hat Enterprise Linux 7 Red Hat n/a
Red Hat Enterprise Linux 7 Red Hat 3.14.0S
Red Hat Enterprise Linux 6 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Red Hat n/a
Red Hat Enterprise Linux 6 Red Hat Insteon Hub 2245-222 - Firmware version 1012
Red Hat Enterprise Linux 7 Red Hat All Android releases from CAF using the Linux kernel
Red Hat Enterprise Linux 8 Red Hat 3.11.0S
Red Hat Enterprise Linux 8 Red Hat 3.12.1S
Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat 3.12.2S
Red Hat Enterprise Linux 9 Red Hat 3.13.0S
Red Hat Enterprise Linux 9 Red Hat 3.13.2S
Red Hat Enterprise Linux 9 Red Hat 3.13.3S
Red Hat Enterprise Linux 9 Red Hat 3.13.2aS
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 Red Hat 3.13.5aS
Red Hat Enterprise Linux 6 Red Hat 3.6.5bE
Red Hat Enterprise Linux 8 Red Hat Microsoft Windows 10 1703.
Red Hat Enterprise Linux 7 Red Hat 3.14.2S
Red Hat Enterprise Linux 8 Red Hat n/a
Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat < 53
Red Hat Enterprise Linux 9 Red Hat n/a

References (44)

Credits (2)