Out-of-Bounds Access Vulnerability in netfilter's nf_tables
CVE-2023-6040
7.8HIGH
What is CVE-2023-6040?
An out-of-bounds access vulnerability has been identified in the netfilter component of the Linux Kernel. This vulnerability arises from inadequate checks when creating new netfilter tables, specifically within the nf_tables_newtable
function. Attackers can exploit this flaw by supplying invalid nf_tables family values, which may lead to unauthorized access to out-of-bounds memory regions. This could compromise system integrity and potentially allow execution of arbitrary code in the kernel context. Immediate patching and implementation of best security practices are recommended to mitigate the risk.
Affected Version(s)
linux Linux 0 < 5.18-rc1