CVE-2023-39193

Summary

A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.

Affected Software

VendorProductVersion RangeStatus
Red HatRed Hat Enterprise Linux 80:4.18.0-553.rt7.342.el8_10 < *unaffected
Red HatRed Hat Enterprise Linux 80:4.18.0-553.el8_10 < *unaffected
Red HatRed Hat Enterprise Linux 90:5.14.0-427.13.1.el9_4 < *unaffected
Red HatRed Hat Enterprise Linux 90:5.14.0-427.13.1.el9_4 < *unaffected

Weaknesses

  • CWE-125: Out-of-bounds Read

Workarounds

This flaw can be mitigated by preventing the affected xt_sctp kernel module from being loaded. For instructions on how to blacklist a kernel module, please see https://access.redhat.com/solutions/41278.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References