Main Vulnerability Database Vulnerabilities #VU80584

Memory leak in Linux kernel - CVE-2023-4569

Published: September 11, 2023

Vulnerability identifier: #VU80584

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2023-4569

CWE-ID: CWE-401

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Linux Foundation

Affected software:
Linux kernel

Detailed vulnerability description

The vulnerability allows a local user to perform DoS attack on the target system.

The vulnerability exists due memory leak within the nft_set_catchall_flush() function in net/netfilter/nf_tables_api.c. A local user can perform a denial of service attack.

How to mitigate CVE-2023-4569

Install update from vendor's website.

Sources

https://bugzilla.redhat.com/show_bug.cgi?id=2235470
https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230812110526.49808-1-fw@strlen.de/
https://access.redhat.com/security/cve/CVE-2023-4569
https://www.debian.org/security/2023/dsa-5492

Memory leak in Linux kernel - CVE-2023-4569

Detailed vulnerability description

How to mitigate CVE-2023-4569

Sources

Please verify you're human