CVE-2023-4273: Kernel: exfat: stack overflow in exfat_get_uniname_from_ext_entry
First published: Mon Jul 10 2023(Updated: )
A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a single long file name. Since the file name characters are copied into a stack variable, a local privileged attacker could use this flaw to overflow the kernel stack.
Credit: secalert@redhat.com secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | <6.4 | |
| Linux Linux kernel | =6.5-rc1 | |
| Linux Linux kernel | =6.5-rc2 | |
| Linux Linux kernel | =6.5-rc3 | |
| Linux Linux kernel | =6.5-rc4 | |
| Fedoraproject Fedora | =38 | |
| Redhat Enterprise Linux | =9.0 | |
| redhat/kernel | <6.5 | 6.5 |
| Fedoraproject Fedora | =37 | |
| Debian Debian Linux | =11.0 | |
| Debian Debian Linux | =12.0 | |
| All of | ||
| Netapp H300s Firmware | ||
| Netapp H300s | ||
| All of | ||
| Netapp H500s Firmware | ||
| Netapp H500s | ||
| All of | ||
| Netapp H700s Firmware | ||
| Netapp H700s | ||
| All of | ||
| Netapp H410s Firmware | ||
| Netapp H410s | ||
| debian/linux | 5.10.223-1 5.10.226-1 6.1.115-1 6.1.119-1 6.12.5-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2023-4273
- https://bugzilla.redhat.com/show_bug.cgi?id=2221609
- https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/
- https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/344H6HO6SSC4KT7PDFXSDIXKMKHISSGF/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3TYLSJ2SAI7RF56ZLQ5CQWCJLVJSD73Q/
- https://www.debian.org/security/2023/dsa-5480
- https://www.debian.org/security/2023/dsa-5492
- https://access.redhat.com/errata/RHSA-2023:6583
- https://security.netapp.com/advisory/ntap-20231027-0002/
- https://launchpad.net/bugs/cve/CVE-2023-4273
- https://github.com/torvalds/linux/commit/d42334578eba1390859012ebb91e1e556d51db49
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2230448
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2221609#c0
- https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4273
- https://nvd.nist.gov/vuln/detail/CVE-2023-4273
- https://security-tracker.debian.org/tracker/CVE-2023-4273
- https://ubuntu.com/security/CVE-2023-4273
- https://git.kernel.org/linus/d42334578eba1390859012ebb91e1e556d51db49
- collector/nvd-index
- agent/weakness
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/title
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-4273
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/tags
- collector/nvd-api
- source/NVD
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/nvd-cve
- agent/event
- agent/remedy
- agent/last-modified-date
- agent/references
- agent/trending
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/6.5-rc1
- version/linux linux kernel/6.5-rc2
- version/linux linux kernel/6.5-rc3
- version/linux linux kernel/6.5-rc4
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/38
- vendor/redhat
- canonical/redhat enterprise linux
- version/redhat enterprise linux/9.0
- package-manager/redhat
- version/fedoraproject fedora/37
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/11.0
- version/debian debian linux/12.0
- vendor/netapp
- canonical/netapp h300s firmware
- canonical/netapp h300s
- canonical/netapp h500s firmware
- canonical/netapp h500s
- canonical/netapp h700s firmware
- canonical/netapp h700s
- canonical/netapp h410s firmware
- canonical/netapp h410s
- package-manager/debian