CVE-2023-6111

Source
https://cve.org/CVERecord?id=CVE-2023-6111
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-6111.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-6111
Downstream
Published
2023-11-14T14:05:35.216Z
Modified
2026-07-15T01:49:12.444141250Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
Use-after-free in Linux kernel's netfilter: nf_tables component
Details

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

The function nfttransgccatchall did not remove the catchall set element from the catchalllist when the argument sync is true, making it possible to free a catchall set element many times.

We recommend upgrading past commit 93995bf4af2c5a99e2a87f0cd5ce547d31eb7630.

Database specific
{
    "cwe_ids": [
        "CWE-416"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/6xxx/CVE-2023-6111.json",
    "cna_assigner": "Google"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
Events
Introduced
ffc253263a1375a65fa6c9f62a893e9767fbebfa
Fixed
0dd3ee31125508cd67f7e7172247f05b7fd1753a
Database specific
{
    "extracted_events": [
        {
            "introduced": "6.6"
        },
        {
            "fixed": "6.7"
        }
    ],
    "source": "AFFECTED_FIELD"
}

Affected versions

v6.*
v6.6
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-6111.json"