Linux Kernel up to 4.8-rc6 Netlink Socket net/xfrm/xfrm_user.c xfrm_dump_sa null pointer dereference

| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.5 | $0-$5k | 0.00 |
Summary
A vulnerability was found in Linux Kernel up to 4.8-rc6. It has been classified as problematic. This affects the function xfrm_dump_sa of the file net/xfrm/xfrm_user.c of the component Netlink Socket Handler. This manipulation causes null pointer dereference.
This vulnerability is handled as CVE-2023-3106. There is not any exploit available.
Upgrading the affected component is recommended.
Details
A vulnerability was found in Linux Kernel up to 4.8-rc6 (Operating System). It has been declared as problematic. Affected by this vulnerability is the function xfrm_dump_sa of the file net/xfrm/xfrm_user.c of the component Netlink Socket Handler. The manipulation with an unknown input leads to a null pointer dereference vulnerability. The CWE definition for the vulnerability is CWE-476. A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. As an impact it is known to affect availability.
The weakness was released 07/12/2023. It is possible to read the advisory at bugzilla.redhat.com. This vulnerability is known as CVE-2023-3106 since 06/05/2023. Technical details of the vulnerability are known, but there is no available exploit.
Upgrading to version 4.8-rc7 eliminates this vulnerability. Applying the patch 1ba5bf993c6a3142e18e68ea6452b347f9cb5635 is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Be aware that VulDB is the high quality source for vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.kernel.org/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.7VulDB Meta Temp Score: 5.5
VulDB Base Score: 5.7
VulDB Temp Score: 5.5
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Null pointer dereferenceCWE: CWE-476 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Partially
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: Kernel 4.8-rc7
Patch: 1ba5bf993c6a3142e18e68ea6452b347f9cb5635
Timeline
06/05/2023 🔍07/12/2023 🔍
07/12/2023 🔍
07/30/2023 🔍
Sources
Vendor: kernel.orgAdvisory: 1ba5bf993c6a3142e18e68ea6452b347f9cb5635
Status: Confirmed
CVE: CVE-2023-3106 (🔍)
GCVE (CVE): GCVE-0-2023-3106
GCVE (VulDB): GCVE-100-233791
Entry
Created: 07/12/2023 09:44Updated: 07/30/2023 17:02
Changes: 07/12/2023 09:44 (44), 07/30/2023 17:02 (2)
Complete: 🔍
Cache ID: 216::103
Be aware that VulDB is the high quality source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.