CVE-2023-52433: netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
First published: Tue Feb 20 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction New elements in this transaction might expired before such transaction ends. Skip sync GC for such elements otherwise commit path might walk over an already released object. Once transaction is finished, async GC will collect such expired element.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Kernel-devel | ||
| Linux Kernel | >=6.5<6.5.4 | |
| NetApp ONTAP Tools for VMware vSphere | =9 | |
| NetApp ONTAP Tools for VMware vSphere | =10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/9db9feb841f7449772f9393c16b9ef4536d8c127
- https://git.kernel.org/stable/c/03caf75da1059f0460666c826e9f50e13dfd0017
- https://git.kernel.org/stable/c/c323ed65f66e5387ee0a73452118d49f1dae81b8
- https://git.kernel.org/stable/c/9af7dfb3c9d7985172a240f85e684c5cd33e29ce
- https://git.kernel.org/stable/c/9a8c544158f68f656d1734eb5ba00c4f817b76b1
- https://git.kernel.org/stable/c/e3213ff99a355cda811b41e8dbb3472d13167a3a
- https://git.kernel.org/stable/c/2ee52ae94baabf7ee09cf2a8d854b990dac5d0e4
- https://security.netapp.com/advisory/ntap-20240828-0003/
Frequently Asked Questions
What is the severity of CVE-2023-52433?
CVE-2023-52433 is classified as a high severity vulnerability due to its potential impact on system stability and security.
How do I fix CVE-2023-52433?
To fix CVE-2023-52433, you should update your Linux kernel to the latest patched version provided by your distribution.
What systems are affected by CVE-2023-52433?
CVE-2023-52433 affects certain versions of the Linux kernel, particularly those using netfilter functionalities.
What are the risks associated with CVE-2023-52433?
The risks associated with CVE-2023-52433 include potential instability and unexpected behaviors in network packet filtering.
Is CVE-2023-52433 being actively exploited in the wild?
As of the latest information, there are no confirmed reports of CVE-2023-52433 being actively exploited in the wild.
- agent/title
- agent/first-publish-date
- agent/type
- agent/author
- agent/description
- agent/weakness
- agent/severity
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/last-modified-date
- agent/remedy
- agent/references
- agent/softwarecombine
- agent/event
- agent/tags
- collector/nvd-api
- source/NVD
- vendor/linux
- canonical/red hat kernel-devel
- canonical/linux kernel
- version/linux kernel/6.5
- vendor/netapp
- canonical/netapp ontap tools for vmware vsphere
- version/netapp ontap tools for vmware vsphere/9
- version/netapp ontap tools for vmware vsphere/10