CVE-2023-44466: Buffer Overflow
First published: Fri Sep 29 2023(Updated: )
An issue was discovered in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5. There is an integer signedness error, leading to a buffer overflow and remote code execution via HELLO or one of the AUTH frames. This occurs because of an untrusted length taken from a TCP packet in ceph_decode_32.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | <6.4.5 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.123-1 6.1.119-1 6.12.6-1 6.12.9-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a282a2f10539dce2aa619e71e1817570d557fc97
- https://github.com/google/security-research/security/advisories/GHSA-jg27-jx6w-xwph
- https://github.com/torvalds/linux/commit/a282a2f10539dce2aa619e71e1817570d557fc97
- https://www.spinics.net/lists/ceph-devel/msg57909.html
- https://security.netapp.com/advisory/ntap-20231116-0003/
- https://launchpad.net/bugs/cve/CVE-2023-44466
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44466
- https://nvd.nist.gov/vuln/detail/CVE-2023-44466
- https://security-tracker.debian.org/tracker/CVE-2023-44466
- https://ubuntu.com/security/CVE-2023-44466
- https://git.kernel.org/linus/a282a2f10539dce2aa619e71e1817570d557fc97
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2023-44466.
What is the severity of CVE-2023-44466?
The severity of CVE-2023-44466 is high with a score of 8.8.
Where can I find more information about CVE-2023-44466?
You can find more information about CVE-2023-44466 at the following links: [link1](https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a282a2f10539dce2aa619e71e1817570d557fc97), [link2](https://github.com/google/security-research/security/advisories/GHSA-jg27-jx6w-xwph), [link3](https://github.com/torvalds/linux/commit/a282a2f10539dce2aa619e71e1817570d557fc97).
How does CVE-2023-44466 occur?
CVE-2023-44466 occurs due to an integer signedness error in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5, leading to a buffer overflow and remote code execution via HELLO or one of the AUTH frames.
How can I fix CVE-2023-44466?
To fix CVE-2023-44466, it is recommended to update to Linux kernel version 6.4.5 or later.
- collector/nvd-index
- collector/mitre-cve
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/weakness
- agent/author
- agent/severity
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/tags
- collector/nvd-cve
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/references
- agent/event
- agent/trending
- vendor/linux
- canonical/linux linux kernel
- package-manager/debian