Vulnerabilities > CVE-2023-4527 - Out-of-bounds Read vulnerability in multiple products

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

HIGH

network

high complexity

NVD

Published: 2023-09-18

Updated: 2024-09-16

Summary

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack contents through the function returned address data, and may cause a crash.

Vulnerable Configurations

Part	Description	Count
Application	Gnu GNU Glibc - GNU Glibc 0.1 GNU Glibc 0.4 GNU Glibc 0.4.1 GNU Glibc 0.5 GNU Glibc 0.6 GNU Glibc 1.00 GNU Glibc 1.01 GNU Glibc 1.02 GNU Glibc 1.03 GNU Glibc 1.04 GNU Glibc 1.05 GNU Glibc 1.06 GNU Glibc 1.06.1 GNU Glibc 1.06.2 GNU Glibc 1.06.3 GNU Glibc 1.06.4 GNU Glibc 1.06.6 GNU Glibc 1.06.7 GNU Glibc 1.06.8 GNU Glibc 1.06.9 GNU Glibc 1.06.10 GNU Glibc 1.06.11 GNU Glibc 1.06.12 GNU Glibc 1.06.13 GNU Glibc 1.07 GNU Glibc 1.07.1 GNU Glibc 1.07.2 GNU Glibc 1.07.3 GNU Glibc 1.07.4 GNU Glibc 1.07.5 GNU Glibc 1.07.6 GNU Glibc 1.08 GNU Glibc 1.08.1 GNU Glibc 1.08.3 GNU Glibc 1.08.4 GNU Glibc 1.08.5 GNU Glibc 1.08.6 GNU Glibc 1.08.7 GNU Glibc 1.08.8 GNU Glibc 1.08.9 GNU Glibc 1.08.10 GNU Glibc 1.08.11 GNU Glibc 1.08.12 GNU Glibc 1.08.13 GNU Glibc 1.08.14 GNU Glibc 1.09 GNU Glibc 1.09.1 GNU Glibc 1.09.2 GNU Glibc 1.09.3 GNU Glibc 1.09.5 GNU Glibc 2.0 GNU Glibc 2.0.1 GNU Glibc 2.0.2 GNU Glibc 2.0.3 GNU Glibc 2.0.4 GNU Glibc 2.0.5 GNU Glibc 2.0.6 GNU Glibc 2.1 GNU Glibc 2.1.1 GNU Glibc 2.1.1.6 GNU Glibc 2.1.2 GNU Glibc 2.1.3 GNU Glibc 2.1.3.10 GNU Glibc 2.1.9 GNU Glibc 2.2 GNU Glibc 2.2.1 GNU Glibc 2.2.2 GNU Glibc 2.2.3 GNU Glibc 2.2.4 GNU Glibc 2.2.5 GNU Glibc 2.3 GNU Glibc 2.3.1 GNU Glibc 2.3.2 GNU Glibc 2.3.3 GNU Glibc 2.3.4 GNU Glibc 2.3.5 GNU Glibc 2.3.6 GNU Glibc 2.3.10 GNU Glibc 2.4 GNU Glibc 2.5 GNU Glibc 2.5.1 GNU Glibc 2.6 GNU Glibc 2.6.1 GNU Glibc 2.7 GNU Glibc 2.8 GNU Glibc 2.9 GNU Glibc 2.10 GNU Glibc 2.10.1 GNU Glibc 2.10.2 GNU Glibc 2.11 GNU Glibc 2.11.1 GNU Glibc 2.11.2 GNU Glibc 2.11.3 GNU Glibc 2.12 GNU Glibc 2.12.0 GNU Glibc 2.12.1 GNU Glibc 2.12.2 GNU Glibc 2.13 GNU Glibc 2.14 GNU Glibc 2.14.1 GNU Glibc 2.15 GNU Glibc 2.16 GNU Glibc 2.17 GNU Glibc 2.18 GNU Glibc 2.19 GNU Glibc 2.20 GNU Glibc 2.21 GNU Glibc 2.22 GNU Glibc 2.23 GNU Glibc 2.24 GNU Glibc 2.25 GNU Glibc 2.26 GNU Glibc 2.27 GNU Glibc 2.28 GNU Glibc 2.29 GNU Glibc 2.30 GNU Glibc 2.31 GNU Glibc 2.32 GNU Glibc 2.32.0 GNU Glibc 2.33 GNU Glibc 2.34 GNU Glibc 2.36 GNU Glibc 2.37 GNU Glibc 2.38	136
Application	Redhat Redhat Codeready Linux Builder FOR Arm64 EUS 9.2_Aarch64 Redhat Codeready Linux Builder FOR IBM Z Systems EUS 9.2_S390X Redhat Codeready Linux Builder EUS FOR Power Little Endian 9.0_Ppc64Le Redhat Codeready Linux Builder FOR IBM Z Systems 9.0_S390X Redhat Codeready Linux Builder FOR Arm64 9.0_Aarch64 Redhat Codeready Linux Builder EUS FOR Power Little Endian EUS 9.2_Ppc64Le Redhat Codeready Linux Builder EUS 9.2	7
OS	Redhat Redhat Enterprise Linux 8.0 Redhat Enterprise Linux 9.0 Redhat Enterprise Linux EUS 8.8 Redhat Enterprise Linux EUS 9.2 Redhat Enterprise Linux Server AUS 9.2 Redhat Enterprise Linux FOR Power Little Endian 9.2_Ppc64Le Redhat Enterprise Linux FOR Power Little Endian 8.0_Ppc64Le Redhat Enterprise Linux FOR Power Little Endian EUS 9.2_Ppc64Le Redhat Enterprise Linux FOR Power Little Endian EUS 8.8_Ppc64Le Redhat Enterprise Linux FOR IBM Z Systems S390X 9.2 Redhat Enterprise Linux FOR IBM Z Systems EUS S390X 9.2 Redhat Enterprise Linux TUS 8.8 Redhat Enterprise Linux Server FOR Power Little Endian Update Services FOR SAP Solutions 9.2_Ppc64Le Redhat Enterprise Linux FOR ARM 64 EUS 9.2_Aarch64 Redhat Enterprise Linux FOR ARM 64 9.0_Aarch64 Redhat Enterprise Linux FOR IBM Z Systems EUS 8.8_S390X Redhat Enterprise Linux FOR IBM Z Systems 8.0_S390X	17
OS	Fedoraproject Fedoraproject Fedora 37 Fedoraproject Fedora 38 Fedoraproject Fedora 39	3
OS	Netapp Netapp H300S Firmware - Netapp H500S Firmware - Netapp H700S Firmware - Netapp H410S Firmware - Netapp H410C Firmware -	5
Hardware	Netapp Netapp H300S - Netapp H500S - Netapp H700S - Netapp H410S - Netapp H410C -	5

Common Weakness Enumeration (CWE)

CWE-125 - Out-of-bounds Read

Common Attack Pattern Enumeration and Classification (CAPEC)

Overread Buffers
An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Common Attack Pattern Enumeration and Classification (CAPEC)

References