CVE-2023-39194

A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which can result in a read past the end of an allocated buffer. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, potentially leading to an information disclosure.

Published: Oct 9, 2023
Updated: Oct 12, 2023
CVE: CVE-2023-39194
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.4
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-125

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	6.5-rc1	6.5-rc1.x
linux / linux_kernel	-	6.5
linux / linux_kernel	6.5-rc2	6.5-rc2.x
linux / linux_kernel	6.5-rc3	6.5-rc3.x
linux / linux_kernel	6.5-rc4	6.5-rc4.x
linux / linux_kernel	6.5-rc5	6.5-rc5.x
linux / linux_kernel	6.5-rc6	6.5-rc6.x
redhat / enterprise_linux	8.0	8.0.x
redhat / enterprise_linux	9.0	9.0.x
fedoraproject / fedora	38	38.x

https://access.redhat.com/errata/RHSA-2024:2394
https://access.redhat.com/errata/RHSA-2024:2950
https://access.redhat.com/errata/RHSA-2024:3138
https://access.redhat.com/security/cve/CVE-2023-39194
https://bugzilla.redhat.com/show_bug.cgi?id=2226788
https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html
https://www.zerodayinitiative.com/advisories/ZDI-CAN-18111/

Vulnerability Database

290,278

CVE-2023-39194