UBUNTU-CVE-2023-4569
Vulnerability Summary
Timeline
Description
A memory leak flaw was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the Linux Kernel. This issue may allow a local attacker to cause double-deactivations of catchall elements, which can result in a memory leak.
CVSS Metrics
- v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Systems
- ubuntu•linux
< 5.15.0-84.93
- ubuntu•linux-allwinner-5.19
all
- ubuntu•linux-aws
< 5.15.0-1045.50
- ubuntu•linux-aws-5.0
all
- ubuntu•linux-aws-5.11
all
- ubuntu•linux-aws-5.13
all
- ubuntu•linux-aws-5.15
< 5.15.0-1045.50~20.04.1
- ubuntu•linux-aws-5.19
all
- ubuntu•linux-aws-5.3
all
- ubuntu•linux-aws-5.8
all
- ubuntu•linux-aws-6.2
< 6.2.0-1012.12~22.04.1
- ubuntu•linux-azure
all | < 5.15.0-1047.54
- ubuntu•linux-azure-5.11
all
- ubuntu•linux-azure-5.13
all
- ubuntu•linux-azure-5.15
< 5.15.0-1047.54~20.04.1
- ubuntu•linux-azure-5.19
all
- ubuntu•linux-azure-5.3
all
- ubuntu•linux-azure-5.8
all
- ubuntu•linux-azure-6.2
< 6.2.0-1012.12~22.04.1
- ubuntu•linux-azure-edge
all
- ubuntu•linux-azure-fde
all | < 5.15.0-1047.54.1
- ubuntu•linux-azure-fde-5.19
all
- ubuntu•linux-bluefield
< 5.15.0-1024.26 | < 5.15.0-1024.26 | all
- ubuntu•linux-fips
all
- ubuntu•linux-gcp
all | < 5.15.0-1042.50
- ubuntu•linux-gcp-5.11
all
- ubuntu•linux-gcp-5.13
all
- ubuntu•linux-gcp-5.15
< 5.15.0-1042.50~20.04.1
- ubuntu•linux-gcp-5.19
all
- ubuntu•linux-gcp-5.3
all
- ubuntu•linux-gcp-5.8
all
- ubuntu•linux-gcp-6.2
< 6.2.0-1014.14~22.04.1
- ubuntu•linux-gke
all | < 5.15.0-1042.47
- ubuntu•linux-gke-4.15
all
- ubuntu•linux-gke-5.15
all
- ubuntu•linux-gke-5.4
all
- ubuntu•linux-gkeop
< 5.15.0-1028.33
- ubuntu•linux-gkeop-5.15
< 5.15.0-1028.33~20.04.1
- ubuntu•linux-gkeop-5.4
all
- ubuntu•linux-hwe
all
- ubuntu•linux-hwe-5.11
all
- ubuntu•linux-hwe-5.13
all
- ubuntu•linux-hwe-5.15
< 5.15.0-84.93~20.04.1
- ubuntu•linux-hwe-5.19
all
- ubuntu•linux-hwe-5.8
all
- ubuntu•linux-hwe-6.2
< 6.2.0-33.33~22.04.1
- ubuntu•linux-hwe-edge
all
- ubuntu•linux-ibm
< 5.15.0-1038.41
- ubuntu•linux-ibm-5.15
< 5.15.0-1038.41~20.04.1
- ubuntu•linux-intel-5.13
all
Showing first 50 affected entries in server-rendered view.
References (11)
- https://ubuntu.com/security/CVE-2023-4569
- https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230812110526.49808-1-fw@strlen.de/
- https://access.redhat.com/security/cve/CVE-2023-4569
- https://ubuntu.com/security/notices/USN-6383-1
- https://ubuntu.com/security/notices/USN-6384-1
- https://ubuntu.com/security/notices/USN-6385-1
- https://ubuntu.com/security/notices/USN-6386-1
- https://ubuntu.com/security/notices/USN-6386-2
- https://ubuntu.com/security/notices/USN-6386-3
- https://ubuntu.com/security/notices/USN-6466-1
- https://www.cve.org/CVERecord?id=CVE-2023-4569