CVE-2023-3106

2023-07-1209:15:14

Debian Security Bug Tracker

security-tracker.debian.org

netlink

xfrm_msg_getsa

vulnerability

denial of service

privilege escalation

unix

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

5.1%

JSON

A NULL pointer dereference vulnerability was found in netlink_dump. This issue can occur when the Netlink socket receives the message(sendmsg) for the XFRM_MSG_GETSA, XFRM_MSG_GETPOLICY type message, and the DUMP flag is set and can cause a denial of service or possibly another unspecified impact. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is unlikely.

OSVersionArchitecturePackageVersionFilename
Debian12alllinux< 4.8.5-1linux_4.8.5-1_all.deb
Debian11alllinux< 4.8.5-1linux_4.8.5-1_all.deb
Debian999alllinux< 4.8.5-1linux_4.8.5-1_all.deb
Debian13alllinux< 4.8.5-1linux_4.8.5-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	< 4.8.5-1	linux_4.8.5-1_all.deb
Debian	11	all	linux	< 4.8.5-1	linux_4.8.5-1_all.deb
Debian	999	all	linux	< 4.8.5-1	linux_4.8.5-1_all.deb
Debian	13	all	linux	< 4.8.5-1	linux_4.8.5-1_all.deb