CVE-2023-39189
5.1
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L
Summary
A flaw was found in the Netfilter subsystem in the Linux kernel. The nfnl_osf_add_callback function did not validate the user mode controlled opt_num field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 8 | 0:4.18.0-553.rt7.342.el8_10 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8 | 0:4.18.0-553.el8_10 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9 | 0:5.14.0-427.13.1.el9_4 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9 | 0:5.14.0-427.13.1.el9_4 < * | unaffected |
Weaknesses
- CWE-125: Out-of-bounds Read
Workarounds
This flaw can be mitigated by preventing the affected Passive OS Fingerprinting match module (xt_osf) from being loaded. For instructions on how to blacklist a kernel module, please see https://access.redhat.com/solutions/41278.
ADP Enrichment
CVE Program Container
Additional References
- https://access.redhat.com/errata/RHSA-2024:2394
- https://access.redhat.com/errata/RHSA-2024:2950
- https://access.redhat.com/errata/RHSA-2024:3138
- https://access.redhat.com/security/cve/CVE-2023-39189
- https://bugzilla.redhat.com/show_bug.cgi?id=2226777
- https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html
References
- https://access.redhat.com/errata/RHSA-2024:2394
- https://access.redhat.com/errata/RHSA-2024:2950
- https://access.redhat.com/errata/RHSA-2024:3138
- https://access.redhat.com/security/cve/CVE-2023-39189
- https://bugzilla.redhat.com/show_bug.cgi?id=2226777
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.