CVE-2023-5972

Kernel: the nfta_inner_num and nfta_expr_name netlink attributes accessed without checking its presence in nft_inner.c

Published: 11/23/2023 Last updated: 8/2/2024 Reserved: 11/6/2023

A null pointer dereference flaw was found in the nft_inner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	7	High	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Opam packages affected (29)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes ortools_solvers orun rawlink rawlink-eio rawlink-lwt restricted shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (15)

Product	Vendor	Version
Red Hat Enterprise Linux 9	Red Hat	< d517cdeb904ddc0cbebcc959d43596426cac40b0
Red Hat Enterprise Linux 6	Red Hat	< d835fa49d9589a780ff0d001bb7e6323238a4afb
Red Hat Enterprise Linux 7	Red Hat	<= 5.15.*
Red Hat Enterprise Linux 6	Red Hat	< 88b4cbcf6b041ae0f2fc8a34554a5b6a83a2b7cd
Red Hat Enterprise Linux 8	Red Hat	<= 6.6.*
Red Hat Enterprise Linux 7	Red Hat	5.14
Red Hat Enterprise Linux 9	Red Hat	<= 6.17.*
Fedora	Fedora	< d05ba46134d07e889de7d23cf8503574a22ede09
Fedora	Fedora	< 40ff52527daec00cf1530c17a95636916ddd3b38
Red Hat Enterprise Linux 9	Red Hat	<= *
Red Hat Enterprise Linux 7	Red Hat	< 5.14
Red Hat Enterprise Linux 8	Red Hat	<= 6.12.*
Red Hat Enterprise Linux 9	Red Hat	<= 6.1.*
kernel	n/a	< 02aa671c08a4834bef5166743a7b88686fbfa023
kernel	n/a	< 0462fec709d51762ba486245bc344f44cc6cfa97

References (16)

Credits (2)

Red Hat would like to thank Xingyuan Mo (IceSword Lab) for reporting this issue.
Red Hat would like to thank Xingyuan Mo (IceSword Lab) for reporting this issue.