CVE-2023-4563 — Vulnetix

CVE-2023-4563 PUBLISHED

Es besteht eine Schwachstelle im Linux-Kernel. Dieser Fehler besteht in der nftables-Unterkomponente aufgrund eines Race-Problems zwischen Set GC und Transaktion, das ein Use-after-free-Problem ermöglicht. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.

EPSS 0.04% · 7.3th percentile

Risk Scores

EPSS Score

0.04%

7.3th percentile

Affected Products

Vendor	Product	Versions
Open Source	Open Source Linux Kernel
Fedora	Fedora Linux
SUSE	SUSE Linux

Exploit Intelligence

https://github.com/torvalds/linux/commit/6c42227c3467549ddc65efe99c869021d2f4a570 (circl)
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.6 (circl)

Timeline

Aug 28, 2023 CVE Published
Sep 15, 2023 EPSS Score
Sep 18, 2023 EPSS Score
Sep 20, 2023 EPSS Score
Sep 23, 2023 EPSS Score
Sep 25, 2023 EPSS Score
Sep 28, 2023 EPSS Score
Oct 1, 2023 EPSS Score
Oct 3, 2023 EPSS Score
Oct 6, 2023 EPSS Score
Oct 9, 2023 EPSS Score
Oct 11, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2191.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2191 advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-November/016995.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-October/016702.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-October/016677.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-October/016554.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-October/016512.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-September/016283.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-September/016285.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-September/016234.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-September/016181.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2023-September/016152.html advisory
https://bodhi.fedoraproject.org/updates/FEDORA-2023-da8b7c1ca3 advisory
https://bodhi.fedoraproject.org/updates/FEDORA-2023-a1ca0ef4d6 advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2235306 advisory

Open in Interactive Console →