Bug 2256279 (CVE-2023-7192) - CVE-2023-7192 kernel: refcount leak in ctnetlink_create_conntrack()
Summary: CVE-2023-7192 kernel: refcount leak in ctnetlink_create_conntrack()
Keywords:
Status: NEW
Alias: CVE-2023-7192
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks: 2238800
TreeView+ depends on / blocked
 
Reported: 2023-12-30 17:54 UTC by Rohit Keshri
Modified: 2024-05-02 16:01 UTC (History)
46 users (show)

Fixed In Version: Kernel 6.3-rc1
Doc Type: If docs needed, set a value
Doc Text:
A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This issue may allow a local attacker with CAP_NET_ADMIN privileges to cause a denial of service (DoS) attack due to a refcount overflow.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2024:0858 0 None None None 2024-02-19 01:12:19 UTC
Red Hat Product Errata RHBA-2024:1796 0 None None None 2024-04-11 21:12:12 UTC
Red Hat Product Errata RHBA-2024:2065 0 None None None 2024-04-25 14:55:19 UTC
Red Hat Product Errata RHBA-2024:2680 0 None None None 2024-05-02 16:01:39 UTC
Red Hat Product Errata RHSA-2024:0723 0 None None None 2024-02-07 16:26:36 UTC
Red Hat Product Errata RHSA-2024:0725 0 None None None 2024-02-07 16:22:40 UTC
Red Hat Product Errata RHSA-2024:1188 0 None None None 2024-03-06 12:37:38 UTC
Red Hat Product Errata RHSA-2024:1250 0 None None None 2024-03-12 00:44:44 UTC
Red Hat Product Errata RHSA-2024:1306 0 None None None 2024-03-13 09:08:17 UTC
Red Hat Product Errata RHSA-2024:1367 0 None None None 2024-03-19 00:23:05 UTC
Red Hat Product Errata RHSA-2024:1382 0 None None None 2024-03-19 15:08:03 UTC
Red Hat Product Errata RHSA-2024:1404 0 None None None 2024-03-19 17:27:54 UTC
Red Hat Product Errata RHSA-2024:2006 0 None None None 2024-04-23 16:39:59 UTC
Red Hat Product Errata RHSA-2024:2008 0 None None None 2024-04-23 16:28:22 UTC

Description Rohit Keshri 2023-12-30 17:54:43 UTC 
A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. In this flaw a local attacker with CAP_NET_ADMIN privilege may cause a denial of service (DoS) attack due to a refcount overflows.

Refer:
https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=ac4893980bbe79ce383daf9a0885666a30fe4c83
Comment 4 errata-xmlrpc 2024-02-07 16:22:36 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Extended Update Support

Via RHSA-2024:0725 https://access.redhat.com/errata/RHSA-2024:0725
Comment 5 errata-xmlrpc 2024-02-07 16:26:32 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Extended Update Support

Via RHSA-2024:0723 https://access.redhat.com/errata/RHSA-2024:0723
Comment 7 errata-xmlrpc 2024-03-06 12:37:35 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Extended Update Support

Via RHSA-2024:1188 https://access.redhat.com/errata/RHSA-2024:1188
Comment 8 errata-xmlrpc 2024-03-12 00:44:41 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Extended Update Support

Via RHSA-2024:1250 https://access.redhat.com/errata/RHSA-2024:1250
Comment 10 errata-xmlrpc 2024-03-13 09:08:13 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Extended Update Support

Via RHSA-2024:1306 https://access.redhat.com/errata/RHSA-2024:1306
Comment 11 errata-xmlrpc 2024-03-19 00:23:02 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.4 Telecommunications Update Service

Via RHSA-2024:1367 https://access.redhat.com/errata/RHSA-2024:1367
Comment 12 errata-xmlrpc 2024-03-19 15:07:59 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Telecommunications Update Service
  Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions

Via RHSA-2024:1382 https://access.redhat.com/errata/RHSA-2024:1382
Comment 13 errata-xmlrpc 2024-03-19 17:27:50 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Extended Update Support

Via RHSA-2024:1404 https://access.redhat.com/errata/RHSA-2024:1404
Comment 14 errata-xmlrpc 2024-04-23 16:28:18 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Telecommunications Update Service

Via RHSA-2024:2008 https://access.redhat.com/errata/RHSA-2024:2008
Comment 15 errata-xmlrpc 2024-04-23 16:39:54 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support
  Red Hat Enterprise Linux 8.2 Telecommunications Update Service
  Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions

Via RHSA-2024:2006 https://access.redhat.com/errata/RHSA-2024:2006
Note You need to log in before you can comment on or make changes to this bug.