CVE-2023-42756

Summary

CVE	CVE-2023-42756
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-09-28 14:15:00 UTC
Updated	2023-11-07 04:21:00 UTC
Description	A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wrong `set`. This issue may allow a local user to crash the system.

Risk And Classification

Problem Types: CWE-362

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Debian	Debian Linux	10.0	All	All	All
Operating System	Fedoraproject	Fedora	37	All	All	All
Operating System	Fedoraproject	Fedora	38	All	All	All
Operating System	Fedoraproject	Fedora	39	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Operating System	Linux	Linux Kernel	6.6	rc1	All	All
Operating System	Linux	Linux Kernel	6.6	rc2	All	All
Operating System	Redhat	Enterprise Linux	9.0	All	All	All

References

Reference	Source	Link	Tags
[SECURITY] [DLA 3623-1] linux-5.10 security update	MISC	lists.debian.org
oss-sec: [CVE-2023-42756] Linux kernel race condition in netfilter	MISC	seclists.org
[SECURITY] Fedora 38 Update: kernel-6.5.6-200.fc38 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
[SECURITY] Fedora 37 Update: kernel-6.5.6-100.fc37 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
cve-details	MISC	access.redhat.com
[SECURITY] Fedora 39 Update: kernel-6.5.6-300.fc39 - package-announce - Fedora Mailing-Lists	MISC	lists.fedoraproject.org
2239848 – (CVE-2023-42756) CVE-2023-42756 kernel: netfilter: race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP	MISC	bugzilla.redhat.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

161237 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2023-13043)
199841 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6444-1)
199844 Ubuntu Security Notification for Linux kernel (Intel IoTG) Vulnerabilities (USN-6445-1)
199845 Ubuntu Security Notification for Linux kernel (BlueField) Vulnerabilities (USN-6442-1)
199846 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6441-1)
199847 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-6443-1)
199848 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6446-1)
199854 Ubuntu Security Notification for Linux kernel (GCP) Vulnerabilities (USN-6441-2)
199858 Ubuntu Security Notification for Linux kernel (Intel IoTG) Vulnerabilities (USN-6445-2)
199859 Ubuntu Security Notification for Linux kernel (StarFive) Vulnerabilities (USN-6444-2)
199861 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6446-2)
199868 Ubuntu Security Notification for Linux kernel (Oracle) Vulnerabilities (USN-6446-3)
199872 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6441-3)
199883 Ubuntu Security Notification for Linux kernel (NVIDIA) Vulnerabilities (USN-6466-1)
199893 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-6479-1)
199912 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6454-1)
199913 Ubuntu Security Notification for Linux kernel (StarFive) Vulnerabilities (USN-6454-4)
199916 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6454-2)
199918 Ubuntu Security Notification for Linux kernel (ARM laptop) Vulnerabilities (USN-6454-3)
284598 Fedora Security Update for kernel (FEDORA-2023-50bd7c9c12)
284599 Fedora Security Update for kernel (FEDORA-2023-830d9ec624)
285211 Fedora Security Update for kernel (FEDORA-2023-c3bb819677)
356530 Amazon Linux Security Advisory for kernel : ALAS2023-2023-385
356569 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.15-2023-028
6000265 Debian Security Update for linux-5.10 (DLA 3623-1)
6140204 AWS Bottlerocket Security Update for kernel (GHSA-3gh7-4chv-fmw4)
6140380 AWS Bottlerocket Security Update for kernel (GHSA-j3v4-jxrr-6grv)
673595 EulerOS Security Update for kernel (EulerOS-SA-2023-3247)
673692 EulerOS Security Update for kernel (EulerOS-SA-2023-3275)
907558 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (30055-1)