A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/171601/Kernel-Live-Patch-Security-Notice-LNS-0093-1.html | Third Party Advisory VDB Entry |
https://bugzilla.redhat.com/show_bug.cgi?id=2161713 | Issue Tracking Third Party Advisory |
https://seclists.org/oss-sec/2023/q1/20 | Exploit Mailing List Third Party Advisory |
https://security.netapp.com/advisory/ntap-20230511-0003/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
AND |
|
History
11 Aug 2023, 19:12
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:linux:linux_kernel:6.3:rc3:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.3:rc2:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.3:rc4:*:*:*:*:*:* |
26 Jun 2023, 16:57
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230511-0003/ - Third Party Advisory |
11 May 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Apr 2023, 12:42
Type | Values Removed | Values Added |
---|---|---|
First Time |
Redhat enterprise Linux For Ibm Z Systems
Redhat enterprise Linux For Ibm Z Systems Eus |
|
CPE | cpe:2.3:o:redhat:enterprise_linux_for_ibmz_systems:9.0:*:*:*:*:*:*:* |
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.0:*:*:*:*:*:*:* |
03 Apr 2023, 13:19
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2161713 - Issue Tracking, Third Party Advisory | |
References | (MISC) https://seclists.org/oss-sec/2023/q1/20 - Exploit, Mailing List, Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/171601/Kernel-Live-Patch-Security-Notice-LNS-0093-1.html - Third Party Advisory, VDB Entry | |
CWE | CWE-190 | |
First Time |
Redhat enterprise Linux Eus
Redhat codeready Linux Builder Fedoraproject fedora Redhat enterprise Linux Server Redhat Redhat enterprise Linux Server For Power Little Endian Update Services For Sap Solutions Redhat enterprise Linux Fedoraproject Redhat enterprise Linux For Real Time Redhat enterprise Linux For Ibmz Systems Canonical ubuntu Linux Linux linux Kernel Redhat enterprise Linux For Power Little Endian Eus Redhat enterprise Linux For Power Little Endian Linux Canonical Redhat enterprise Linux For Real Time For Nfv Redhat enterprise Linux For Ibmz Systems Eus |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CPE | cpe:2.3:o:linux:linux_kernel:6.3:rc4:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.3:rc1:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_eus:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_for_ibmz_systems:9.0:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.3:rc2:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:redhat:enterprise_linux_for_real_time:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server:9.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_for_ibmz_systems_eus:9.0:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.3:rc3:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:* cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.0:*:*:*:*:*:*:* cpe:2.3:a:redhat:codeready_linux_builder:-:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:* cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:9.0:*:*:*:*:*:*:* |
30 Mar 2023, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
27 Mar 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-27 22:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-0179
Mitre link : CVE-2023-0179
CVE.ORG link : CVE-2023-0179
JSON object : View
Products Affected
redhat
- enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions
- enterprise_linux_for_ibm_z_systems
- codeready_linux_builder
- enterprise_linux_for_power_little_endian_eus
- enterprise_linux
- enterprise_linux_for_ibm_z_systems_eus
- enterprise_linux_server
- enterprise_linux_for_real_time
- enterprise_linux_eus
- enterprise_linux_for_real_time_for_nfv
- enterprise_linux_for_power_little_endian
linux
- linux_kernel
canonical
- ubuntu_linux
fedoraproject
- fedora
CWE
CWE-190
Integer Overflow or Wraparound