Back to bug 2213260
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Alex | 2023-06-07 16:37:17 UTC | CC | security-response-team | |
| Paige Jung | 2023-06-07 16:53:26 UTC | Doc Text | A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system. | A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests. This can be used to perform arbitrary reads and writes in kernel memory. This could allow a local user with CAP_NET_ADMIN capability to crash the system or potentially escalate their privileges on the system. |
| Alex | 2023-06-07 17:04:55 UTC | Depends On | 2213271 | |
| Beth Uptagrafft | 2023-06-07 20:53:44 UTC | Doc Type | --- | If docs needed, set a value |
| RaTasha Tillery-Smith | 2023-06-08 14:08:37 UTC | CC | psutter, sukulkar | |
| Doc Text | A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests. This can be used to perform arbitrary reads and writes in kernel memory. This could allow a local user with CAP_NET_ADMIN capability to crash the system or potentially escalate their privileges on the system. | A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAP_NET_ADMIN capability to crash or potentially escalate their privileges on the system. | ||
| Alex | 2023-06-11 09:39:50 UTC | Depends On | 2214035 | |
| Alex | 2023-06-11 09:43:55 UTC | Flags | needinfo?(bhu) | |
| Beth Uptagrafft | 2023-06-12 13:42:28 UTC | Flags | needinfo?(bhu) | needinfo?(allarkin) |
| Alex | 2023-06-12 15:10:52 UTC | Flags | needinfo?(allarkin) | needinfo?(bhu) |
| Beth Uptagrafft | 2023-06-12 15:59:10 UTC | Flags | needinfo?(bhu) | needinfo?(allarkin) |
| Alex | 2023-06-13 17:50:40 UTC | Flags | needinfo?(allarkin) | |
| Alex | 2023-06-13 17:51:47 UTC | Comment | 10 | updated |
| Alex | 2023-06-14 08:55:06 UTC | Depends On | 2214963, 2214964 | |
| Phil Sutter | 2023-06-15 12:41:26 UTC | CC | fwestpha | |
| Alex | 2023-06-20 10:36:59 UTC | Comment | 0 | updated |
| Alex | 2023-06-20 10:38:29 UTC | Deadline | 2023-06-08 | |
| Alex | 2023-06-20 10:50:00 UTC | Depends On | 2216165, 2216170, 2216164, 2216163, 2216161, 2216159, 2216167, 2216168, 2216171, 2216172, 2216169, 2216162, 2216160, 2216166 | |
| Alex | 2023-06-20 10:53:24 UTC | Depends On | 2216177, 2216176, 2216179, 2216173, 2216175, 2216178, 2216174 | |
| Alex | 2023-06-29 21:51:40 UTC | Summary | EMBARGOED CVE-2023-3117 kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests | CVE-2023-3117 kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests |
| CC | kernel-mgr, kpatch-maint, ymankad | |||
| Group | security, qe_staff | |||
| Deadline | 2023-06-08 | |||
| Alex | 2023-06-29 21:52:16 UTC | Depends On | 2218699 | |
| Alex | 2023-06-29 21:55:19 UTC | Fixed In Version | kernel 6.4-rc7 | |
| Salvatore Bonaccorso | 2023-06-30 04:09:19 UTC | CC | carnil | |
| Flags | needinfo?(security-response-team) | |||
| Product Security DevOps Team | 2023-07-04 07:00:29 UTC | Flags | needinfo?(security-response-team) | needinfo?(allarkin) |
| Alex | 2023-07-06 09:08:16 UTC | Blocks | 2218602 | |
| CC | pdelbell | |||
| Alex | 2023-07-06 09:25:03 UTC | Flags | needinfo?(allarkin) | |
| Red Hat Bugzilla | 2023-07-07 08:29:05 UTC | CC | security-response-team | |
| Assignee | security-response-team | nobody | ||
| Salvatore Bonaccorso | 2023-07-08 13:44:12 UTC | Flags | needinfo?(allarkin) | |
| Alex | 2023-07-09 06:47:49 UTC | Summary | CVE-2023-3117 kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests | CVE-2023-3390 kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests |
| Alias | CVE-2023-3117 | CVE-2023-3390 | ||
| Alex | 2023-07-09 06:50:22 UTC | Flags | needinfo?(allarkin) | |
| Kazu Yoshida | 2023-07-27 08:55:58 UTC | CC | kyoshida | |
| Steve Grubb | 2023-07-27 14:37:38 UTC | CC | sgrubb | |
| Pedro Sampaio | 2023-08-07 16:04:50 UTC | Blocks | 2227022 | |
| CC | psampaio |
Back to bug 2213260