Security Advisory

CVE-2023-4015

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-06 13:52:44

Last updated 2025-02-13 17:03:23

Assigner Google

State PUBLISHED

Description

A use-after-free vulnerability in the Linux kernels netfilter: nf_tables component can be exploited to achieve local privilege escalation. On an error when building a nftables rule, deactivating immediate expressions in nft_immediate_deactivate() can lead unbinding the chain and objects be deactivated but later used. We recommend upgrading past commit 0a771f7b266b02d262900c75f1e175c7fe76fec2.

← Browse all CVEs View on cve.org ↗