F5-K000138726
First published: Fri Mar 01 2024(Updated: )
An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is updated according to packet sizes without bounds checks. We recommend upgrading past commit 3e337087c3b5805fe0b8a46ba622a962880b5d64.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| F5 Traffix Systems Signaling Delivery Controller | =5.2.0=5.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of F5-K000138726?
The severity of F5-K000138726 is high due to its potential for local privilege escalation.
How do I fix F5-K000138726?
To fix F5-K000138726, it is recommended to apply the latest security patches provided by F5 for Traffix SDC versions 5.1.0 and 5.2.0.
What component is affected by F5-K000138726?
F5-K000138726 affects the net/sched: sch_qfq component of the Linux kernel.
What type of vulnerability is F5-K000138726?
F5-K000138726 is classified as an out-of-bounds write vulnerability.
Which products are impacted by F5-K000138726?
F5-K000138726 impacts the F5 Traffix Systems Signaling Delivery Controller versions 5.1.0 and 5.2.0.
- agent/references
- agent/last-modified-date
- agent/severity
- agent/type
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/f5-advisory
- source/F5
- alias/CVE-2023-3611
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/f5
- canonical/f5 traffix systems signaling delivery controller
- version/f5 traffix systems signaling delivery controller/5.2.0
- version/f5 traffix systems signaling delivery controller/5.1.0