Wind River Support Network

HomeDefectsLIN1021-6955
Fixed

LIN1021-6955 : Security Advisory - linux - CVE-2023-6817

Created: Dec 19, 2023    Updated: Nov 25, 2024
Resolved Date: Nov 25, 2024
Found In Version: 10.21.20.1
Fix Version: 10.21.20.24
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel

Description

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

The function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free.

We recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.

CVEs


Live chat
Online