CVE-2023-4244

CVSS V2 None CVSS V3 None
Description
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Due to a race condition between nf_tables netlink control plane transaction and nft_set element garbage collection, it is possible to underflow the reference counter causing a use-after-free vulnerability. We recommend upgrading past commit 3e91b0ebd994635df2346353322ac51ce84ce6d8.
Overview
  • CVE ID
  • CVE-2023-4244
  • Assigner
  • Google
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-09-06T13:53:24.873Z
  • Last Modified Date
  • 2023-09-06T13:53:24.873Z
History
Created Old Value New Value Data Type Notes
2024-06-24 19:21:26 Added to TrackCVE