CVE-2023-4273: Kernel: exfat: stack overflow in exfat_get_uniname_from_ext_entry
First published: Mon Jul 10 2023(Updated: )
A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a single long file name. Since the file name characters are copied into a stack variable, a local privileged attacker could use this flaw to overflow the kernel stack.
Credit: secalert@redhat.com secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <6.5 | 6.5 |
| Linux kernel | <6.4 | |
| Linux kernel | =6.5-rc1 | |
| Linux kernel | =6.5-rc2 | |
| Linux kernel | =6.5-rc3 | |
| Linux kernel | =6.5-rc4 | |
| Fedora | =38 | |
| Red Hat Enterprise Linux | =9.0 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.16-1 | |
| Fedora | =37 | |
| Debian | =11.0 | |
| Debian | =12.0 | |
| All of | ||
| NetApp H300S Firmware | ||
| NetApp H300S | ||
| All of | ||
| NetApp H500S Firmware | ||
| NetApp H500s | ||
| All of | ||
| NetApp H700S | ||
| NetApp H700S | ||
| All of | ||
| NetApp H410S Firmware | ||
| NetApp H410S Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2023-4273
- https://bugzilla.redhat.com/show_bug.cgi?id=2221609
- https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/
- https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/344H6HO6SSC4KT7PDFXSDIXKMKHISSGF/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3TYLSJ2SAI7RF56ZLQ5CQWCJLVJSD73Q/
- https://www.debian.org/security/2023/dsa-5480
- https://www.debian.org/security/2023/dsa-5492
- https://access.redhat.com/errata/RHSA-2023:6583
- https://security.netapp.com/advisory/ntap-20231027-0002/
- https://launchpad.net/bugs/cve/CVE-2023-4273
- https://github.com/torvalds/linux/commit/d42334578eba1390859012ebb91e1e556d51db49
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2230448
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2221609#c0
- https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4273
- https://nvd.nist.gov/vuln/detail/CVE-2023-4273
- https://security-tracker.debian.org/tracker/CVE-2023-4273
- https://ubuntu.com/security/CVE-2023-4273
- https://git.kernel.org/linus/d42334578eba1390859012ebb91e1e556d51db49
Frequently Asked Questions
What is the severity of CVE-2023-4273?
CVE-2023-4273 has been classified with a moderate severity level due to its potential impact on the integrity and availability of file operations.
How do I fix CVE-2023-4273?
To fix CVE-2023-4273, you should upgrade to the latest kernel version above 6.5 or install recommended patches provided by your distribution.
Which Linux versions are affected by CVE-2023-4273?
CVE-2023-4273 affects Linux kernel versions up to 6.4 and specific release candidates of 6.5.
Does CVE-2023-4273 affect all Linux distributions?
CVE-2023-4273 primarily affects Linux distributions based on certain kernels, including Red Hat, Debian, and Fedora.
What potential impact does CVE-2023-4273 have on systems?
The vulnerability could lead to file system corruption and may allow unauthorized access or data loss in systems using the affected exFAT driver.
- agent/weakness
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/title
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-4273
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/references
- agent/trending
- agent/source
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- collector/nvd-cve
- source/NVD
- collector/nvd-api
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/6.5-rc1
- version/linux kernel/6.5-rc2
- version/linux kernel/6.5-rc3
- version/linux kernel/6.5-rc4
- vendor/fedoraproject
- canonical/fedora
- version/fedora/38
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/9.0
- package-manager/debian
- version/fedora/37
- vendor/debian
- canonical/debian
- version/debian/11.0
- version/debian/12.0
- vendor/netapp
- canonical/netapp h300s firmware
- canonical/netapp h300s
- canonical/netapp h500s firmware
- canonical/netapp h500s
- canonical/netapp h700s
- canonical/netapp h410s firmware