CVE-2023-5972

A null pointer dereference flaw was found in the nft_inner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system.

Published: Nov 23, 2023
Updated: Dec 1, 2023
CVE: CVE-2023-5972
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	6.2-rc1	6.2-rc1.x
linux / linux_kernel	6.2-rc2	6.2-rc2.x
linux / linux_kernel	6.2-rc3	6.2-rc3.x
linux / linux_kernel	6.2-rc4	6.2-rc4.x
linux / linux_kernel	6.2-rc5	6.2-rc5.x
linux / linux_kernel	6.2.0-rc2	6.2.0-rc2.x
linux / linux_kernel	6.2.0-rc1	6.2.0-rc1.x
linux / linux_kernel	6.2-rc6	6.2-rc6.x
linux / linux_kernel	6.2-rc7	6.2-rc7.x
linux / linux_kernel	6.2-rc8	6.2-rc8.x
linux / linux_kernel	6.2.0-rc3	6.2.0-rc3.x
linux / linux_kernel	6.2.0-rc4	6.2.0-rc4.x
linux / linux_kernel	6.2.0-rc5	6.2.0-rc5.x
linux / linux_kernel	6.2.0-rc6	6.2.0-rc6.x
linux / linux_kernel	6.6-rc1	6.6-rc1.x
linux / linux_kernel	6.6-rc2	6.6-rc2.x
linux / linux_kernel	6.6-rc3	6.6-rc3.x
linux / linux_kernel	6.6-rc4	6.6-rc4.x
linux / linux_kernel	6.6-rc5	6.6-rc5.x
linux / linux_kernel	6.6-rc6	6.6-rc6.x
linux / linux_kernel	6.2.1	6.5.10.x
fedoraproject / fedora	39	39.x

Vulnerability Database

CVE-2023-5972