SB2023101179 - Local information disclosure in Linux kernel Netfilter
Published: October 11, 2023 Updated: October 11, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Out-of-bounds read (CVE-ID: CVE-2023-39193)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the sctp_mt_check() function in Netfilter subsystem in Linux kernel. A local user with CAP_NET_ADMIN capability can trigger an out-of-bounds read error and read contents of memory on the system.
2) Out-of-bounds read (CVE-ID: CVE-2023-39192)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to a boundary condition within the the u32_match_it() function in Netfilter subsystem in Linux kernel. A local user can trigger an out-of-bounds read error and gain access to sensitive information.
Remediation
Install update from vendor's website.
References
- https://bugzilla.redhat.com/show_bug.cgi?id=2226787
- https://www.zerodayinitiative.com/advisories/ZDI-CAN-18866/
- https://lore.kernel.org/all/20230828221255.124812-1-wander@redhat.com/
- https://bugzilla.redhat.com/show_bug.cgi?id=2226784
- https://www.zerodayinitiative.com/advisories/ZDI-CAN-18408/
- https://lore.kernel.org/all/20230828132107.18376-1-wander@redhat.com/