Vulnerabilities > CVE-2023-6111 - Use After Free vulnerability in Linux Kernel

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

linux

CWE-416

NVD

Published: 2023-11-14

Updated: 2024-08-27

Summary

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_trans_gc_catchall did not remove the catchall set element from the catchall_list when the argument sync is true, making it possible to free a catchall set element many times. We recommend upgrading past commit 93995bf4af2c5a99e2a87f0cd5ce547d31eb7630.

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel 6.6 Linux Linux Kernel 6.6.1 Linux Linux Kernel 6.6.2 Linux Linux Kernel 6.5.6 Linux Linux Kernel 6.5.7 Linux Linux Kernel 6.5.8 Linux Linux Kernel 6.5.9 Linux Linux Kernel 6.5.10 Linux Linux Kernel 6.5.11 Linux Linux Kernel 6.5.12 Linux Linux Kernel 6.1.56 Linux Linux Kernel 6.1.57 Linux Linux Kernel 6.1.58 Linux Linux Kernel 6.1.59 Linux Linux Kernel 6.1.60 Linux Linux Kernel 6.1.61 Linux Linux Kernel 6.1.62 Linux Linux Kernel 6.1.63 Linux Linux Kernel 5.15.134 Linux Linux Kernel 5.15.135 Linux Linux Kernel 5.15.136 Linux Linux Kernel 5.15.137 Linux Linux Kernel 5.15.138 Linux Linux Kernel 5.15.139	31

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References