Security Advisory

CVE-2023-6817

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-18 14:37:05

Last updated 2025-02-13 17:26:33

Assigner Google

State PUBLISHED

Description

A use-after-free vulnerability in the Linux kernels netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free. We recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.

← Browse all CVEs View on cve.org ↗