Back to bug 2196105
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Rohit Keshri | 2023-05-08 05:00:08 UTC | CC | security-response-team | |
| Rohit Keshri | 2023-05-08 07:28:04 UTC | Fixed In Version | Kernel 6.4 RC1 | |
| Rohit Keshri | 2023-05-08 07:29:44 UTC | CC | acaringi, allarkin, bhu, chwhite, dbohanno, ddepaula, debarbos, dfreiber, dvlasenk, ezulian, hkrzesin, jarod, jburrell, jdenham, jfaracco, jferlan, jforbes, jlelli, joe.lawrence, jshortt, jstancek, jwyatt, kcarcia, ldoskova, lgoncalv, lleshchi, lzampier, nmurray, ptalbert, qzhao, rogbas, rrobaina, rvrbovsk, rysulliv, scweaver, swood, tyberry, vkumar, walters, wcosta, williams, wmealing, ycote | |
| Rohit Keshri | 2023-05-08 07:56:37 UTC | Depends On | 2196146, 2196144, 2196148, 2196152, 2196157, 2196151, 2196142, 2196134, 2196159, 2196145, 2196143, 2196136, 2196153, 2196160, 2196133, 2196141, 2196132, 2196147, 2196131, 2196137, 2196155, 2196156, 2196139, 2196138, 2196149, 2196140, 2196135, 2196154, 2196150, 2196158 | |
| Rohit Keshri | 2023-05-08 08:09:57 UTC | Deadline | 2023-05-02 | |
| Rohit Keshri | 2023-05-08 08:25:26 UTC | Doc Text | A use-after-free flaw was found in Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw could allow an unprivileged local users to execute arbitrary Kernel code, and could even lead to a kernel information leak problem. |
|
| RaTasha Tillery-Smith | 2023-05-08 13:04:29 UTC | Doc Text | A use-after-free flaw was found in Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw could allow an unprivileged local users to execute arbitrary Kernel code, and could even lead to a kernel information leak problem. | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows unprivileged local users to execute arbitrary kernel code, possibly leading to an information leak issue. |
| Guilherme de Almeida Suckevicz | 2023-05-08 17:00:09 UTC | CC | kernel-mgr | |
| Summary | EMBARGOED CVE-2023-32233 kernel:Use-After-Free in Netfilter nf_tables when NFT_MSG_DELRULE and NFT_MSG_DELSETELEM operations used | CVE-2023-32233 kernel:Use-After-Free in Netfilter nf_tables when NFT_MSG_DELRULE and NFT_MSG_DELSETELEM operations used | ||
| Deadline | 2023-05-02 | |||
| Group | security, qe_staff | |||
| Joe Lawrence | 2023-05-09 12:33:54 UTC | Flags | needinfo?(rkeshri) | |
| Rohit Keshri | 2023-05-09 13:16:38 UTC | CC | admin-team | |
| CC | jpoimboe, kpatch-maint, rhandlin | |||
| Rohit Keshri | 2023-05-09 13:23:28 UTC | Depends On | 2196590, 2196595, 2196587, 2196592, 2196588, 2196594, 2196593, 2196589, 2196591 | |
| Rohit Keshri | 2023-05-09 13:34:10 UTC | Flags | needinfo?(rkeshri) | |
| Rohit Keshri | 2023-05-09 14:06:30 UTC | CC | sukulkar | |
| sushil kulkarni | 2023-05-09 14:20:15 UTC | CC | egarver | |
| sushil kulkarni | 2023-05-09 14:20:39 UTC | CC | fwestpha | |
| Troels Arvin | 2023-05-10 04:22:06 UTC | CC | tru | |
| CC | troels | |||
| Donald Lambert | 2023-05-10 10:53:53 UTC | CC | donald.lambert | |
| Rohit Keshri | 2023-05-10 12:10:05 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows unprivileged local users to execute arbitrary kernel code, possibly leading to an information leak issue. | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows a local, unprivileged users to execute arbitrary kernel code, possibly leading to an information leak issue. |
| Rohit Keshri | 2023-05-10 12:18:34 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows a local, unprivileged users to execute arbitrary kernel code, possibly leading to an information leak issue. | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows a local, normal privileged (or cap_net_admin) users to execute arbitrary kernel code, possibly leading to an information leak issue. |
| Rohit Keshri | 2023-05-10 13:40:14 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows a local, normal privileged (or cap_net_admin) users to execute arbitrary kernel code, possibly leading to an information leak issue. | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows a local, unprivileged users to execute arbitrary kernel code, possibly leading to an information leak issue. |
| Bartlomiej Kida | 2023-05-10 13:57:21 UTC | CC | bartlomiej | |
| Rohit Keshri | 2023-05-10 16:09:31 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. This flaw allows a local, unprivileged users to execute arbitrary kernel code, possibly leading to an information leak issue. | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. In order to exploit this flaw, the attacker must have CAP_NET_ADMIN privileges and be able to manipulate netfilter entries. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. |
| Matt | 2023-05-10 17:21:39 UTC | CC | mvanderw | |
| Arcadiy Ivanov | 2023-05-11 02:01:42 UTC | CC | arcadiy | |
| Jay Shin | 2023-05-11 06:17:20 UTC | CC | jaeshin | |
| Link ID | Red Hat Knowledge Base (Solution) 7012508 | |||
| Mauro Matteo Cascella | 2023-05-11 09:16:16 UTC | Fixed In Version | Kernel 6.4 RC1 | kernel 6.4-rc1 |
| Alex | 2023-05-11 10:58:03 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_api.c) in the Linux kernel. In order to exploit this flaw, the attacker must have CAP_NET_ADMIN privileges and be able to manipulate netfilter entries. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. In order to exploit this flaw, the attacker must have CAP_NET_ADMIN privileges and be able to manipulate netfilter entries. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. |
| Alex | 2023-05-11 11:28:19 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. In order to exploit this flaw, the attacker must have CAP_NET_ADMIN privileges and be able to manipulate netfilter entries. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. A privileged user (with root or CAP_NET_ADMIN) when manipulate netfilter entries could trigger this issue. |
| Alex | 2023-05-11 11:29:20 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. A privileged user (with root or CAP_NET_ADMIN) when manipulate netfilter entries could trigger this issue. | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. A privileged user (with root or CAP_NET_ADMIN) when manipulating netfilter entries could trigger this issue. |
| Rohit Keshri | 2023-05-11 11:59:36 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. A privileged user (with root or CAP_NET_ADMIN) when manipulating netfilter entries could trigger this issue. | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. In order to exploit this flaw, the attacker must have CAP_NET_ADMIN privileges and be able to manipulate netfilter entries. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. |
| Tony D'Amato | 2023-05-11 12:14:12 UTC | CC | tdamato | |
| Alex | 2023-05-11 13:42:10 UTC | Doc Text | A use-after-free flaw was found in the Netfilter nf_tables in the Linux kernel. In order to exploit this flaw, the attacker must have CAP_NET_ADMIN privileges and be able to manipulate netfilter entries. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. | A flaw use-after-free in the Linux kernel Netfilter nf_tables functionality was found in the way user manipulates netfilter entries. A local user could use this flaw to crash the system or potentially escalate their privileges on the system. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. |
| Fanky W | 2023-05-11 20:29:06 UTC | CC | fankymobile | |
| Flags | needinfo?(rkeshri) | |||
| Roberto Carrieri | 2023-05-12 08:24:08 UTC | CC | chaekim | |
| CC | fandrieu, rcarrier | |||
| Steven | 2023-05-12 08:53:16 UTC | CC | steven | |
| Roberto Carrieri | 2023-05-12 09:33:17 UTC | CC | rcarrier | |
| Roberto Carrieri | 2023-05-12 09:33:47 UTC | CC | fandrieu | rcarrier |
| Roberto Carrieri | 2023-05-12 09:34:43 UTC | CC | rcarrier | |
| James Moore | 2023-05-12 09:47:03 UTC | CC | j.k.moore+redhat | |
| Rohit Keshri | 2023-05-14 12:06:20 UTC | Comment | 14 | updated |
| Rohit Keshri | 2023-05-14 12:08:06 UTC | Flags | needinfo?(rkeshri) | |
| DongHee Suk | 2023-05-15 02:45:59 UTC | CC | dseok | |
| Roberto Carrieri | 2023-05-15 08:11:32 UTC | Flags | needinfo?(security-response-team) | |
| Flags | needinfo?(rkeshri) | |||
| CC | rcarrier | |||
| Rohit Keshri | 2023-05-15 11:01:55 UTC | Flags | needinfo?(security-response-team) needinfo?(rkeshri) | |
| Alex | 2023-05-15 18:26:34 UTC | Flags | needinfo?(rkeshri) | |
| Alex | 2023-05-15 18:27:38 UTC | Comment | 20 | updated |
| Rohit Keshri | 2023-05-16 08:26:55 UTC | Doc Text | A flaw use-after-free in the Linux kernel Netfilter nf_tables functionality was found in the way user manipulates netfilter entries. A local user could use this flaw to crash the system or potentially escalate their privileges on the system. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. | A flaw use-after-free in the Linux kernel Netfilter nf_tables functionality was found in the way user manipulates netfilter entries. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. |
| Paul Dwyer | 2023-05-16 10:10:42 UTC | CC | pdwyer | |
| Mauro Matteo Cascella | 2023-05-16 10:27:18 UTC | Summary | CVE-2023-32233 kernel:Use-After-Free in Netfilter nf_tables when NFT_MSG_DELRULE and NFT_MSG_DELSETELEM operations used | CVE-2023-32233 kernel: use-after-free in Netfilter nf_tables when processing batch requests can lead to privilege escalation |
| Doc Text | A flaw use-after-free in the Linux kernel Netfilter nf_tables functionality was found in the way user manipulates netfilter entries. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. | A flaw use-after-free in the Linux kernel Netfilter nf_tables functionality was found in the way user manipulates netfilter entries. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. | ||
| boboshaq | 2023-05-16 10:40:29 UTC | CC | boboshaq | |
| Mauro Matteo Cascella | 2023-05-16 11:26:31 UTC | Summary | CVE-2023-32233 kernel: use-after-free in Netfilter nf_tables when processing batch requests can lead to privilege escalation | CVE-2023-32233 kernel: use-after-free in Netfilter nf_tables when processing batch requests can lead to privilege escalation |
| Doc Text | A flaw use-after-free in the Linux kernel Netfilter nf_tables functionality was found in the way user manipulates netfilter entries. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system. This vulnerability may lead to arbitrary code execution, and kernel information leak issue. | A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nf_tables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system. | ||
| Troels Arvin | 2023-05-16 13:19:16 UTC | CC | troels | |
| Rohit Keshri | 2023-05-16 13:54:59 UTC | Flags | needinfo?(rkeshri) | |
| Rohit Keshri | 2023-05-16 14:00:00 UTC | Comment | 3 | updated |
| Fanky W | 2023-05-17 08:31:16 UTC | Flags | needinfo?(rkeshri) | |
| Wes Bachman | 2023-05-18 17:46:26 UTC | CC | wbachman | |
| Tess | 2023-05-23 11:16:20 UTC | CC | tsluyter | |
| Roberto Carrieri | 2023-05-24 09:25:16 UTC | CC | rcarrier | |
| Youssef Ghorbal | 2023-05-25 19:05:14 UTC | CC | youssef.ghorbal | |
| Kazu Yoshida | 2023-05-26 10:37:30 UTC | CC | kyoshida | |
| Rik Theys | 2023-05-26 16:48:05 UTC | CC | rik.theys | |
| Mauro Matteo Cascella | 2023-05-29 11:13:26 UTC | Summary | CVE-2023-32233 kernel: use-after-free in Netfilter nf_tables when processing batch requests can lead to privilege escalation | CVE-2023-32233 kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation |
| Rohit Keshri | 2023-05-30 14:33:26 UTC | Flags | needinfo?(rkeshri) | |
| errata-xmlrpc | 2023-05-30 15:01:43 UTC | Link ID | Red Hat Product Errata RHSA-2023:3349 | |
| errata-xmlrpc | 2023-05-30 15:01:57 UTC | Link ID | Red Hat Product Errata RHSA-2023:3351 | |
| errata-xmlrpc | 2023-05-30 15:02:08 UTC | Link ID | Red Hat Product Errata RHSA-2023:3350 | |
| errata-xmlrpc | 2023-06-06 08:45:52 UTC | CC | reerror | |
| Link ID | Red Hat Product Errata RHSA-2023:3470 | |||
| errata-xmlrpc | 2023-06-06 08:46:46 UTC | Link ID | Red Hat Product Errata RHSA-2023:3465 | |
| Rylee Humphrey | 2023-06-06 09:38:27 UTC | CC | anyonearomatic | |
| errata-xmlrpc | 2023-06-06 13:37:38 UTC | Link ID | Red Hat Product Errata RHSA-2023:3490 | |
| Alex | 2023-06-06 21:04:12 UTC | Comment | 36 | updated |
| errata-xmlrpc | 2023-06-21 08:45:55 UTC | Link ID | Red Hat Product Errata RHSA-2023:3705 | |
| errata-xmlrpc | 2023-06-21 14:38:48 UTC | Link ID | Red Hat Product Errata RHSA-2023:3708 | |
| errata-xmlrpc | 2023-06-21 14:39:23 UTC | Link ID | Red Hat Product Errata RHSA-2023:3723 | |
| Bill Glick | 2023-06-26 14:52:32 UTC | CC | bglick | |
| errata-xmlrpc | 2023-06-27 14:04:30 UTC | Link ID | Red Hat Product Errata RHSA-2023:3853 | |
| errata-xmlrpc | 2023-06-27 14:04:43 UTC | Link ID | Red Hat Product Errata RHSA-2023:3852 | |
| Red Hat Bugzilla | 2023-07-07 08:27:42 UTC | Assignee | security-response-team | nobody |
| CC | security-response-team | |||
| Alex | 2023-07-09 07:51:29 UTC | Flags | needinfo?(rkeshri) | |
| errata-xmlrpc | 2023-07-18 07:44:56 UTC | Link ID | Red Hat Product Errata RHSA-2023:4125 | |
| errata-xmlrpc | 2023-07-18 07:45:18 UTC | Link ID | Red Hat Product Errata RHSA-2023:4126 | |
| errata-xmlrpc | 2023-07-18 08:19:00 UTC | Link ID | Red Hat Product Errata RHSA-2023:4145 | |
| errata-xmlrpc | 2023-07-18 08:19:43 UTC | Link ID | Red Hat Product Errata RHSA-2023:4130 | |
| errata-xmlrpc | 2023-07-18 08:21:29 UTC | Link ID | Red Hat Product Errata RHSA-2023:4146 | |
| Donald Lambert | 2023-07-18 10:25:55 UTC | CC | donald.lambert | |
| errata-xmlrpc | 2023-07-25 07:52:03 UTC | Link ID | Red Hat Product Errata RHSA-2023:4262 | |
| errata-xmlrpc | 2023-07-25 07:52:59 UTC | Link ID | Red Hat Product Errata RHSA-2023:4256 | |
| errata-xmlrpc | 2023-07-25 07:53:05 UTC | Link ID | Red Hat Product Errata RHSA-2023:4255 | |
| Rohit Keshri | 2023-08-13 12:56:21 UTC | Flags | needinfo?(rkeshri) |
Back to bug 2196105