CVE-2023-6932

Published: Dec 19, 2023Modified: Jun 17, 2026

7.0

Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.0 / Impact: 5.9

Source: NVD

Description

A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition can be exploited to cause a timer be mistakenly registered on a RCU read locked object which is freed by another thread. We recommend upgrading past commit e2b706c691905fe78468c361aaabc719d0a496f1.

Affected (8)

Products: Debian: Debian Linux · Linux: Linux Kernel

1 product

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0
Linux Linux Kernel	Before 4.14.332
Linux Linux Kernel	From 4.15 to 4.19.301
Linux Linux Kernel	From 4.20 to 5.4.263
Linux Linux Kernel	From 5.11 to 5.15.142
Linux Linux Kernel	From 5.16 to 6.1.66
Linux Linux Kernel	From 5.5 to 5.10.203
Linux Linux Kernel	From 6.2 to 6.6.5

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (14)

http://packetstormsecurity.com/files/177029/Kernel-Live-Patch-Security-Notice-LSN-0100-1.html

Source: cve-coordination@google.com

Third Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=e2b706c691905fe78468c361aaabc719d0a496f1

Source: cve-coordination@google.com

Mailing ListPatch

https://kernel.dance/e2b706c691905fe78468c361aaabc719d0a496f1

Source: cve-coordination@google.com

Patch

https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html

Source: cve-coordination@google.com

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html

Source: cve-coordination@google.com

Mailing ListThird Party Advisory

http://packetstormsecurity.com/files/177029/Kernel-Live-Patch-Security-Notice-LSN-0100-1.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=e2b706c691905fe78468c361aaabc719d0a496f1

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatch

https://kernel.dance/e2b706c691905fe78468c361aaabc719d0a496f1

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://cert-portal.siemens.com/productcert/html/ssa-265688.html

Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e

https://cert-portal.siemens.com/productcert/html/ssa-398330.html

Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e

https://cert-portal.siemens.com/productcert/html/ssa-613116.html

Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e

https://cert-portal.siemens.com/productcert/html/ssa-794697.html

Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e

Timeline

No history available yet.