Wind River Support Network

HomeDefectsLIN1023-489
Fixed

LIN1023-489 : Security Advisory - linux - CVE-2023-32233

Created: May 8, 2023    Updated: Aug 10, 2023
Resolved Date: May 17, 2023
Found In Version: 10.23.30.1
Fix Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel

Description

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.


CREATE(Triage):(User=admin) CVE-2023-32233 (https://nvd.nist.gov/vuln/detail/CVE-2023-32233)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube