CVE-2023-52433 netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction

2024-02-2012:52:56

Linux

www.cve.org

linux kernel

netfilter

vulnerability

resolved

transaction

expired

elements

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

JSON

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction

New elements in this transaction might expired before such transaction
ends. Skip sync GC for such elements otherwise commit path might walk
over an already released object. Once transaction is finished, async GC
will collect such expired element.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/netfilter/nft_set_rbtree.c"
    ],
    "versions": [
      {
        "version": "cb4d00b56367",
        "lessThan": "9db9feb841f7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "c357648929c8",
        "lessThan": "03caf75da105",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "146c76866795",
        "lessThan": "c323ed65f66e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "479a2cf52593",
        "lessThan": "9af7dfb3c9d7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "df650d6a4bf4",
        "lessThan": "9a8c544158f6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f6c383b8c31a",
        "lessThan": "e3213ff99a35",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f6c383b8c31a",
        "lessThan": "2ee52ae94baa",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/netfilter/nft_set_rbtree.c"
    ],
    "versions": [
      {
        "version": "6.5",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.5",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.5.4",
        "lessThanOrEqual": "6.5.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]