NVD Vulnerability Detail

CVE-2023-3777

Summary	A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. When nf_tables_delrule() is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release the objects in certain circumstances. We recommend upgrading past commit 6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8.
Publication Date	Sept. 6, 2023, 11:15 p.m.
Registration Date	Sept. 7, 2023, 10 a.m.
Last Update	Nov. 21, 2024, 5:18 p.m.

Affected software configurations

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:debian:debian_linux:12.0:::::::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
cpe:2.3:o:canonical:ubuntu_linux:22.04::::lts:::

Related information, measures and tools

No	URL	タグ
1	http://packetstormsecurity.com/files/175072/Kernel-Live-Patch-Security-Notice-LSN-0098-1.html	Third Party Advisory VDB Entry
2	http://packetstormsecurity.com/files/175072/Kernel-Live-Patch-Security-Notice-LSN-0098-1.html	Third Party Advisory VDB Entry
3	http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSN-0099-1.html	Third Party Advisory VDB Entry
4	http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSN-0099-1.html	Third Party Advisory VDB Entry
5	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8	Issue Tracking Mailing List Patch Vendor Advisory
6	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8	Issue Tracking Mailing List Patch Vendor Advisory
7	https://kernel.dance/6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8	Patch Vendor Advisory
8	https://kernel.dance/6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8	Patch Vendor Advisory
9	https://www.debian.org/security/2023/dsa-5492	Third Party Advisory
10	https://www.debian.org/security/2023/dsa-5492	Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-416	解放済みメモリの使用	https://cwe.mitre.org/data/definitions/416.html

JVN Vulnerability Information

Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性

Title	Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性
Summary	Linux の Linux Kernel 等複数ベンダの製品には、解放済みメモリの使用に関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 20, 2023, midnight
Registration Date	Dec. 15, 2023, 2:40 p.m.
Last Update	Dec. 15, 2023, 2:40 p.m.

Affected System

Debian

Debian GNU/Linux 12.0

Canonical

Ubuntu 14.04

Ubuntu 16.04

Ubuntu 18.04

Ubuntu 20.04

Ubuntu 22.04

Linux

Linux Kernel 5.9.0 未満

Linux Kernel 6.0 以上 6.5 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2023-3777	https://www.cve.org/CVERecord?id=CVE-2023-3777
National Vulnerability Database (NVD)
2	CVE-2023-3777	https://nvd.nist.gov/vuln/detail/CVE-2023-3777

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-416	https://cwe.mitre.org/data/definitions/416.html

ベンダー情報

No	Name	URL
Debian Security Advisory
1	DSA-5492-1	https://www.debian.org/security/2023/dsa-5492
Kernel.org git repositories
2	netfilter: nf_tables: skip bound chain on rule flush	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8
Linux Kernel
3	Linux Kernel Archives	https://www.kernel.org
Ubuntu
4	トップページ	https://jp.ubuntu.com/

その他

No	Name	URL
関連文書
1	kernel.dance (6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8)	https://kernel.dance/6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8
2	packetstormsecurity.com (Kernel-Live-Patch-Security-Notice-LSN-0098-1)	http://packetstormsecurity.com/files/175072/Kernel-Live-Patch-Security-Notice-LSN-0098-1.html
3	packetstormsecurity.com (Kernel-Live-Patch-Security-Notice-LSN-0099-1)	http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSN-0099-1.html

Change Log

No	Changed Details	Date of change
1	[2023年12月15日] 掲載	Dec. 15, 2023, 2:38 p.m.