CVE-2023-39194
A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which can result in a read past the end of an allocated buffer. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, potentially leading to an information disclosure.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 6.5-rc1 | 6.5-rc1.x |
| linux / linux_kernel | - | 6.5 |
| linux / linux_kernel | 6.5-rc2 | 6.5-rc2.x |
| linux / linux_kernel | 6.5-rc3 | 6.5-rc3.x |
| linux / linux_kernel | 6.5-rc4 | 6.5-rc4.x |
| linux / linux_kernel | 6.5-rc5 | 6.5-rc5.x |
| linux / linux_kernel | 6.5-rc6 | 6.5-rc6.x |
| redhat / enterprise_linux | 8.0 | 8.0.x |
| redhat / enterprise_linux | 9.0 | 9.0.x |
| fedoraproject / fedora | 38 | 38.x |
- https://access.redhat.com/errata/RHSA-2024:2394
- https://access.redhat.com/errata/RHSA-2024:2950
- https://access.redhat.com/errata/RHSA-2024:3138
- https://access.redhat.com/security/cve/CVE-2023-39194
- https://bugzilla.redhat.com/show_bug.cgi?id=2226788
- https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html
- https://www.zerodayinitiative.com/advisories/ZDI-CAN-18111/
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime