Description
A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution.
Related CPE's
o
linux
linux_kernel
o
canonical
ubuntu_linux
o
fedoraproject
fedora
o
redhat
enterprise_linux
o
redhat
enterprise_linux_eus
o
redhat
enterprise_linux_for_ibm_z_systems
o
redhat
enterprise_linux_for_power_little_endian
o
redhat
enterprise_linux_for_power_little_endian_eus
o
redhat
enterprise_linux_server
References
http://packetstormsecurity.com/files/171601/Kernel-Live-Patch-Security-Notice-LNS-0093-1.html
https://bugzilla.redhat.com/show_bug.cgi?id=2161713
https://seclists.org/oss-sec/2023/q1/20
https://security.netapp.com/advisory/ntap-20230511-0003/
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2023-03-27T22:15:20.963
2 years agoLast modified
2023-08-11T19:12:04.860
1 year ago