CVE-2023-1281

Summary

CVE	CVE-2023-1281
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-03-22 14:15:00 UTC
Updated	2023-06-26 16:57:00 UTC
Description	Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation. The imperfect hash area can be updated while packets are traversing, which will cause a use-after-free when 'tcf_exts_exec()' is called with the destroyed tcf_ext. A local attacker user can use this vulnerability to elevate its privileges to root. This issue affects Linux Kernel: from 4.14 before git commit ee059170b1f7e94e55fa6cadee544e176a6e59c2.

Risk And Classification

Problem Types: CWE-416

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Linux	Linux Kernel	All	All	All	All
Operating System	Linux	Linux Kernel	6.2	rc1	All	All
Operating System	Linux	Linux Kernel	6.2	rc2	All	All
Operating System	Linux	Linux Kernel	6.2	rc3	All	All
Operating System	Linux	Linux Kernel	6.2	rc4	All	All
Operating System	Linux	Linux Kernel	6.2	rc5	All	All
Operating System	Linux	Linux Kernel	6.2	rc6	All	All
Operating System	Linux	Linux Kernel	6.2	rc7	All	All
Operating System	Linux	Linux Kernel	6.2	rc8	All	All

References

Reference	Source	Link	Tags
????????	MISC	kernel.dance
[SECURITY] [DLA 3403-1] linux security update	MISC	lists.debian.org
[SECURITY] [DLA 3404-1] linux-5.10 security update	MISC	lists.debian.org
oss-security - CVE-2023-1281, CVE-2023-1829: Linux kernel: Vulnerabilities in the tcindex classifier	MISC	www.openwall.com
kernel/git/torvalds/linux.git - Linux kernel source tree	MISC	git.kernel.org
CVE-2023-1281 Linux Kernel Vulnerability in NetApp Products \| NetApp Product Security	MISC	security.netapp.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

160859 Oracle Enterprise Linux Security Update for kernel (ELSA-2023-4517)
181765 Debian Security Update for linux-5.10 (DLA 3404-1)
181768 Debian Security Update for linux (DLA 3403-1)
182612 Debian Security Update for linux (CVE-2023-1281)
199254 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-5978-1)
199256 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-5977-1)
199292 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6025-1)
199294 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6024-1)
199295 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-6031-1)
199296 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6029-1)
199300 Ubuntu Security Notification for Linux kernel (Qualcomm Snapdragon) Vulnerabilities (USN-6030-1)
199301 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6027-1)
199303 Ubuntu Security Notification for Linux kernel (HWE) Vulnerabilities (USN-6040-1)
199321 Ubuntu Security Notification for Linux kernel (Intel IoTG) Vulnerabilities (USN-6057-1)
199356 Ubuntu Security Notification for Linux kernel (BlueField) Vulnerabilities (USN-6093-1)
199385 Ubuntu Security Notification for Linux kernel (Intel IoTG) Vulnerabilities (USN-6134-1)
199465 Ubuntu Security Notification for Linux kernel (Xilinx ZynqMP) Vulnerabilities (USN-6222-1)
199614 Ubuntu Security Notification for Linux kernel (IoT) Vulnerabilities (USN-6256-1)
241753 Red Hat Update for kpatch-patch (RHSA-2023:3853)
241754 Red Hat Update for kernel (RHSA-2023:3852)
241820 Red Hat Update for kernel (RHSA-2023:4130)
241824 Red Hat Update for kpatch-patch (RHSA-2023:4145)
241825 Red Hat Update for kpatch-patch (RHSA-2023:4146)
241831 Red Hat Update for kernel-rt (RHSA-2023:4126)
241832 Red Hat Update for kernel (RHSA-2023:4125)
241862 Red Hat Update for kernel-rt (RHSA-2023:4255)
241863 Red Hat Update for kernel (RHSA-2023:4256)
241864 Red Hat Update for kpatch-patch (RHSA-2023:4262)
241927 Red Hat Update for kernel-rt (RHSA-2023:4541)
241934 Red Hat Update for kpatch-patch (RHSA-2023:4531)
241936 Red Hat Update for kernel (RHSA-2023:4517)
378468 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-20230042)
378473 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX2-SA-2023:0021)
378512 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2023:0042)
378710 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2023:0079)
672935 EulerOS Security Update for kernel (EulerOS-SA-2023-1824)
672952 EulerOS Security Update for kernel (EulerOS-SA-2023-1806)
673005 EulerOS Security Update for kernel (EulerOS-SA-2023-1873)
673074 EulerOS Security Update for kernel (EulerOS-SA-2023-2193)
673117 EulerOS Security Update for kernel (EulerOS-SA-2023-2152)
673182 EulerOS Security Update for kernel (EulerOS-SA-2023-2335)
673393 EulerOS Security Update for kernel (EulerOS-SA-2023-2647)
674113 EulerOS Security Update for kernel (EulerOS-SA-2023-2689)
753901 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:1803-1)
753902 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:1800-1)
753903 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:1801-1)
753905 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:1811-1)
753914 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:1848-1)
755193 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 44 for SLE 15 SP1) (SUSE-SU-2023:4280-1)
906736 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (25684-1)
906762 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (25690-1)
941227 AlmaLinux Security Update for kernel (ALSA-2023:4517)
941228 AlmaLinux Security Update for kernel-rt (ALSA-2023:4541)
961032 Rocky Linux Security Update for kernel (RLSA-2023:4517)
961046 Rocky Linux Security Update for kernel-rt (RLSA-2023:4541)