Wind River Support Network

HomeDefectsLIN1019-9806
Fixed

LIN1019-9806 : Security Advisory - linux - CVE-2023-32233

Created: May 9, 2023    Updated: Jan 15, 2024
Resolved Date: Jan 15, 2024
Found In Version: 10.19.45.1
Fix Version: 10.19.45.29
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Kernel

Description

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.


CREATE(Triage):(User=admin) CVE-2023-32233 (https://nvd.nist.gov/vuln/detail/CVE-2023-32233)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube