An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->nets` array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
27 Feb 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Jan 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
25 Jan 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
25 Jan 2024, 08:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Jan 2024, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Jan 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Jan 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Nov 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Nov 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Nov 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Nov 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Nov 2023, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Oct 2023, 02:43
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* | |
References | (MISC) https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html - Mailing List, Third Party Advisory | |
First Time |
Debian debian Linux
Debian |
20 Oct 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Oct 2023, 19:41
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://seclists.org/oss-sec/2023/q3/216 - Exploit, Mailing List, Third Party Advisory |
27 Sep 2023, 15:19
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Sep 2023, 15:44
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2239843 - Issue Tracking | |
References | (MISC) https://www.openwall.com/lists/oss-security/2023/09/22/10 - Exploit, Mailing List | |
References | (MISC) https://access.redhat.com/security/cve/CVE-2023-42753 - Third Party Advisory | |
First Time |
Linux
Redhat Redhat enterprise Linux Linux linux Kernel |
|
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* |
|
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
25 Sep 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-25 21:15
Updated : 2024-02-27 21:15
NVD link : CVE-2023-42753
Mitre link : CVE-2023-42753
CVE.ORG link : CVE-2023-42753
JSON object : View
Products Affected
linux
- linux_kernel
redhat
- enterprise_linux
debian
- debian_linux
CWE
CWE-787
Out-of-bounds Write