Wind River Support Network

HomeDefectsLIN1021-5756
Fixed

LIN1021-5756 : Security Advisory - linux - CVE-2023-32233

Created: May 9, 2023    Updated: Jan 13, 2025
Resolved Date: Jan 13, 2025
Found In Version: 10.21.20.1
Fix Version: 10.21.20.18
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.


CREATE(Triage):(User=admin) CVE-2023-32233 (https://nvd.nist.gov/vuln/detail/CVE-2023-32233)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube