Wind River Support Network

HomeDefectsLIN1018-10686
Fixed

LIN1018-10686 : Security Advisory - linux - CVE-2023-32233

Created: May 8, 2023    Updated: Nov 29, 2023
Resolved Date: Oct 16, 2023
Found In Version: 10.18.44.1
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Kernel

Description

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.


CREATE(Triage):(User=admin) CVE-2023-32233 (https://nvd.nist.gov/vuln/detail/CVE-2023-32233)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube