cvelistv5 - CVE-2023-4004

CVE-2023-4004 (GCVE-0-2023-4004)

Vulnerability from cvelistv5 – Published: 2023-07-31 16:22 – Updated: 2025-11-08 03:13

Summary

A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potentially escalate their privileges on the system.

Severity ?

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-416 - Use After Free

Assigner

redhat

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2023:4961	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:4962	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:4967	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5069	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5091	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5093	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5221	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5244	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5255	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5548	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:5627	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:7382	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:7389	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:7411	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:7417	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:7431	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2023:7434	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2023-4004	vdb-entryx_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2225275	issue-trackingx_refsource_REDHAT
	https://patchwork.ozlabs.org/project/netfilter-de…

Impacted products

Vendor

Product

Version

Red Hat

Red Hat Enterprise Linux 8

Unaffected: 0:4.18.0-477.27.1.rt7.290.el8_8 , < * (rpm)
cpe:/a:redhat:enterprise_linux:8::realtime
cpe:/a:redhat:enterprise_linux:8::nfv

Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8::baseos
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 0:4.18.0-477.27.1.el8_8 , < * (rpm) cpe:/o:redhat:enterprise_linux:8::baseos cpe:/a:redhat:enterprise_linux:8::crb
Red Hat	Red Hat Enterprise Linux 8.2 Advanced Update Support	Unaffected: 0:4.18.0-193.119.1.el8_2 , < * (rpm) cpe:/o:redhat:rhel_e4s:8.2::baseos cpe:/o:redhat:rhel_aus:8.2::baseos cpe:/o:redhat:rhel_tus:8.2::baseos
Red Hat	Red Hat Enterprise Linux 8.2 Telecommunications Update Service	Unaffected: 0:4.18.0-193.119.1.rt13.170.el8_2 , < * (rpm) cpe:/a:redhat:rhel_tus:8.2::nfv cpe:/a:redhat:rhel_tus:8.2::realtime
Red Hat	Red Hat Enterprise Linux 8.2 Telecommunications Update Service	Unaffected: 0:4.18.0-193.119.1.el8_2 , < * (rpm) cpe:/o:redhat:rhel_e4s:8.2::baseos cpe:/o:redhat:rhel_aus:8.2::baseos cpe:/o:redhat:rhel_tus:8.2::baseos
Red Hat	Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions	cpe:/o:redhat:rhel_e4s:8.2::baseos
Red Hat	Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions	Unaffected: 0:4.18.0-193.119.1.el8_2 , < * (rpm) cpe:/o:redhat:rhel_e4s:8.2::baseos cpe:/o:redhat:rhel_aus:8.2::baseos cpe:/o:redhat:rhel_tus:8.2::baseos
Red Hat	Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	Unaffected: 0:4.18.0-305.103.1.el8_4 , < * (rpm) cpe:/o:redhat:rhel_e4s:8.4::baseos cpe:/o:redhat:rhel_tus:8.4::baseos cpe:/o:redhat:rhel_aus:8.4::baseos
Red Hat	Red Hat Enterprise Linux 8.4 Telecommunications Update Service	Unaffected: 0:4.18.0-305.103.1.rt7.178.el8_4 , < * (rpm) cpe:/a:redhat:rhel_tus:8.4::nfv cpe:/a:redhat:rhel_tus:8.4::realtime
Red Hat	Red Hat Enterprise Linux 8.4 Telecommunications Update Service	Unaffected: 0:4.18.0-305.103.1.el8_4 , < * (rpm) cpe:/o:redhat:rhel_e4s:8.4::baseos cpe:/o:redhat:rhel_tus:8.4::baseos cpe:/o:redhat:rhel_aus:8.4::baseos
Red Hat	Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions	Unaffected: 0:4.18.0-305.103.1.el8_4 , < * (rpm) cpe:/o:redhat:rhel_e4s:8.4::baseos cpe:/o:redhat:rhel_tus:8.4::baseos cpe:/o:redhat:rhel_aus:8.4::baseos
Red Hat	Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions	cpe:/o:redhat:rhel_e4s:8.4::baseos
Red Hat	Red Hat Enterprise Linux 8.6 Extended Update Support	cpe:/o:redhat:rhel_eus:8.6::baseos
Red Hat	Red Hat Enterprise Linux 8.6 Extended Update Support	Unaffected: 0:4.18.0-372.75.1.el8_6 , < * (rpm) cpe:/a:redhat:rhel_eus:8.6::crb cpe:/o:redhat:rhel_eus:8.6::baseos cpe:/o:redhat:rhev_hypervisor:4.4::el8
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:5.14.0-284.30.1.el9_2 , < * (rpm) cpe:/o:redhat:enterprise_linux:9::baseos cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:5.14.0-284.30.1.rt14.315.el9_2 , < * (rpm) cpe:/a:redhat:enterprise_linux:9::nfv cpe:/a:redhat:enterprise_linux:9::realtime
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:5.14.0-284.30.1.el9_2 , < * (rpm) cpe:/o:redhat:enterprise_linux:9::baseos cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9::baseos
Red Hat	Red Hat Enterprise Linux 9.0 Extended Update Support	Unaffected: 0:5.14.0-70.80.1.el9_0 , < * (rpm) cpe:/a:redhat:rhel_eus:9.0::appstream cpe:/a:redhat:rhel_eus:9.0::crb cpe:/o:redhat:rhel_eus:9.0::baseos
Red Hat	Red Hat Enterprise Linux 9.0 Extended Update Support	Unaffected: 0:5.14.0-70.80.1.rt21.151.el9_0 , < * (rpm) cpe:/a:redhat:rhel_eus:9.0::realtime cpe:/a:redhat:rhel_eus:9.0::nfv
Red Hat	Red Hat Enterprise Linux 9.0 Extended Update Support	cpe:/o:redhat:rhel_eus:9.0::baseos
Red Hat	Red Hat Virtualization 4 for Red Hat Enterprise Linux 8	Unaffected: 0:4.18.0-372.75.1.el8_6 , < * (rpm) cpe:/a:redhat:rhel_eus:8.6::crb cpe:/o:redhat:rhel_eus:8.6::baseos cpe:/o:redhat:rhev_hypervisor:4.4::el8
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7

Show details on NVD website

Vendor	Product	Description
SUSE	Basesystem Module	Basesystem Module 15-SP4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP3
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP2
SUSE	N/A	SUSE Enterprise Storage 7.1
SUSE	N/A	SUSE CaaS Platform 4.0
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP1 Business Critical Linux 15-SP1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.0
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.1
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.2
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.3
SUSE	openSUSE Leap	openSUSE Leap 15.4
SUSE	openSUSE Leap	openSUSE Leap Micro 5.3
SUSE	openSUSE Leap	openSUSE Leap 15.5
SUSE	openSUSE Leap	openSUSE Leap Micro 5.4
SUSE	Public Cloud Module	Public Cloud Module 15-SP4
SUSE	Public Cloud Module	Public Cloud Module 15-SP5
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP1
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP2
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.1
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.2
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.4
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.2
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.4
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP2
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.1
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.0
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.2
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.3
SUSE	SUSE Manager Server	SUSE Manager Server 4.1
SUSE	SUSE Manager Server	SUSE Manager Server 4.0
SUSE	SUSE Manager Server	SUSE Manager Server 4.3
SUSE	SUSE Manager Server	SUSE Manager Server 4.2

Vendor	Product	Description
SUSE	N/A	SUSE Linux Enterprise Workstation Extension 15 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4
SUSE	SUSE Manager Server	SUSE Manager Server 4.3
SUSE	N/A	Legacy Module 15-SP5
SUSE	N/A	Development Tools Module 15-SP4
SUSE	N/A	SUSE Linux Enterprise Workstation Extension 15 SP4
SUSE	N/A	Development Tools Module 15-SP5
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP5
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 12 SP5
SUSE	N/A	SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE	N/A	SUSE Linux Enterprise Workstation Extension 12 12-SP5
SUSE	N/A	SUSE Linux Enterprise High Availability Extension 15 SP4
SUSE	N/A	Legacy Module 15-SP4
SUSE	Basesystem Module	Basesystem Module 15-SP5
SUSE	Basesystem Module	Basesystem Module 15-SP4
SUSE	openSUSE Leap	openSUSE Leap 15.4
SUSE	openSUSE Leap	openSUSE Leap Micro 5.3
SUSE	openSUSE Leap	openSUSE Leap 15.5
SUSE	openSUSE Leap	openSUSE Leap Micro 5.4
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP4
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 12 SP2
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12-SP5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP4
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.5
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.4
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.4
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 12 SP5
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP4
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP2 BCL 12-SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11 SP4
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.3
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.3
SUSE	SUSE Real Time Module	SUSE Real Time Module 15-SP4
SUSE	SUSE Real Time Module	SUSE Real Time Module 15-SP5

Vendor	Product	Description
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - AUS 8.6 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - AUS 8.4 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time for NFV 7 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - TUS 8.2 x86_64
Red Hat	Red Hat CodeReady Linux Builder	Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.0 aarch64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - TUS 8.6 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - TUS 8.4 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server for ARM 64 - 4 years of updates 9.0 aarch64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time for x86_64 - 4 years of updates 9.0 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.0 aarch64
Red Hat	Red Hat CodeReady Linux Builder	Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.6 aarch64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Power, little endian 7 ppc64le
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server 7 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Scientific Computing 7 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.2 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time for NFV for x86_64 - 4 years of updates 9.0 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0 s390x
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.2 ppc64le
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server for IBM z Systems - 4 years of updates 9.0 s390x
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat	Red Hat CodeReady Linux Builder	Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.0 ppc64le
Red Hat	Red Hat CodeReady Linux Builder	Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.6 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Power, big endian 7 ppc64
Oracle	Virtualization	Red Hat Virtualization Host 4 for RHEL 8 x86_64
Red Hat	Red Hat CodeReady Linux Builder	Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.0 s390x
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - AUS 8.2 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0 ppc64le
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time 7 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.2 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
Red Hat	Red Hat CodeReady Linux Builder	Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.0 x86_64
Red Hat	Red Hat CodeReady Linux Builder	Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.6 ppc64le
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 16.04 ESM
Ubuntu	Ubuntu	Ubuntu 18.04 ESM
Ubuntu	Ubuntu	Ubuntu 20.04 LTS
Ubuntu	Ubuntu	Ubuntu 23.04
Ubuntu	Ubuntu	Ubuntu 14.04 ESM
Ubuntu	Ubuntu	Ubuntu 22.04 LTS

	Vendor	Product	Description
	Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time 9 x86_64
	Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Real Time for NFV 9 x86_64

Vendor	Product	Description
Juniper Networks	Junos OS	Junos OS versions 24.4 antérieures à 24.4R2
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions antérieures à 22.4R3-S8-EVO
Juniper Networks	Junos OS	Junos OS versions 23.4 antérieures à 23.4R2-S5
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 23.2-EVO antérieures à 23.2R2-S4-EVO
Juniper Networks	Junos OS	Junos OS versions antérieures à 22.4R3-S8
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 24.2-EVO antérieures à 24.2R2-S2-EVO
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 24.4-EVO antérieures à 24.4R2-EVO
Juniper Networks	Junos Space	Junos Space versions antérieures à 24.1R4
Juniper Networks	Security Director	Security Director Policy Enforcer versions antérieures à 23.1R1 Hotpatch v3
Juniper Networks	Junos Space	Junos Space Security Director versions antérieures à 24.1R4
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 23.4-EVO antérieures à 23.4R2-S5-EVO
Juniper Networks	Junos OS	Junos OS versions 23.2 antérieures à 23.2R2-S4
Juniper Networks	Junos OS	Junos OS versions 24.2 antérieures à 24.2R2-S1

Vendor	Product	Description
IBM	Sterling Connect:Direct	IBM Sterling Connect:Direct pour Unix versions 6.3.x.x antérieures à 6.3.0.2.iFix005
IBM	QRadar Deployment Intelligence App	IBM QRadar Deployment Intelligence App versions antérieures à 3.0.12
IBM	Sterling Connect:Direct	IBM Sterling Connect:Direct pour Unix versions 6.2.x.x antérieures à 6.2.0.7.iFix005
IBM	QRadar	IBM SOAR QRadar Plugin App versions antérieures à 5.3.1
IBM	Sterling Connect:Direct	IBM Sterling Connect:Direct pour Unix versions 6.0.x.x antérieures à 6.0.0.2.iFix159
IBM	Storage Protect	IBM Storage Protect Plus vSnap versions 10.1.x antérieures à 10.1.15.3
IBM	Sterling Connect:Direct	IBM Sterling Connect:Direct pour Unix versions 6.1.x.x antérieures à 6.1.0.4.iFix099

Vendor	Product	Description
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions 22.2-EVO antérieures à 22.2R3-S4-EVO
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions 22.3-EVO antérieures à 22.3R3-S3-EVO
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions 22.4-EVO antérieures à 22.4R3-S2-EVO
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions 23.2-EVO antérieures à 23.2R2-EVO
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions 23.4-EVO antérieures à 23.4R1-S2-EVO
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 21.2 antérieures à 21.2R3-S8
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 21.4 antérieures à 21.4R3-S6
Juniper Networks	N/A	Junos OS versions 22.3 antérieures à 22.3R2-S2
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions 23.4-EVO antérieures à 23.4R2-EVO
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions antérieures à 21.2R3-S8-EVO
Juniper Networks	N/A	Junos OS Evolved versions 21.2-EVO antérieures à 21.2R3-S7-EVO
Juniper Networks	N/A	Junos OS Evolved versions 21.3-EVO antérieures à 21.3R3-S5-EVO
Juniper Networks	N/A	Junos OS Evolved versions 21.4-EVO antérieures à 21.4R2-EVO
Juniper Networks	N/A	Junos OS Evolved versions 21.4-EVO antérieures à 21.4R3-S8-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.1-EVO antérieures à 22.1R3-S6-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.2-EVO antérieures à 22.2R2-S1-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.2-EVO antérieures à 22.2R3-S4-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.3-EVO antérieures à 22.3R1-S1-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.3-EVO antérieures à 22.3R2-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.3-EVO antérieures à 22.3R3-S3-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.4-EVO antérieures à 22.4R2-S2-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.4-EVO antérieures à 22.4R3-EVO
Juniper Networks	N/A	Junos OS Evolved versions 22.4-EVO antérieures à 22.4R3-S3-EVO
Juniper Networks	N/A	Junos OS Evolved versions 23.2-EVO antérieures à 23.2R1-S1-EVO
Juniper Networks	N/A	Junos OS Evolved versions 23.2-EVO antérieures à 23.2R2-S1-EVO
Juniper Networks	N/A	Junos OS Evolved versions 23.4-EVO antérieures à 23.4R1-S2-EVO
Juniper Networks	N/A	Junos OS Evolved versions 23.4-EVO antérieures à 23.4R2-EVO
Juniper Networks	N/A	Junos OS Evolved versions 24.2-EVO antérieures à 24.2R2-EVO
Juniper Networks	N/A	Junos OS Evolved versions antérieures à 20.4R3-S10-EVO
Juniper Networks	N/A	Junos OS Evolved versions antérieures à 21.2R3-S8-EVO
Juniper Networks	N/A	Junos OS Evolved versions antérieures à 21.4R3-S8-EVO
Juniper Networks	N/A	Junos OS Evolved versions antérieures à 22.4R2-EVO
Juniper Networks	N/A	Junos OS Evolved versions antérieures à 22.4R3-EVO
Juniper Networks	N/A	Junos OS Evolved versions antérieures à 23.2R1-EVO
Juniper Networks	N/A	Junos OS Evolved versions antérieures à before 22.1R3-EVO
Juniper Networks	N/A	Junos OS on MX Series versions 21.4 antérieures à 21.4R3-S6
Juniper Networks	N/A	Junos OS on MX Series versions 22.1 antérieures à 22.1R3-S5
Juniper Networks	N/A	Junos OS on MX Series versions 22.2 antérieures à 22.2R3-S3
Juniper Networks	N/A	Junos OS on MX Series versions 22.3 antérieures à 22.3R3-S2
Juniper Networks	N/A	Junos OS on MX Series versions 22.4 antérieures à 22.4R3
Juniper Networks	N/A	Junos OS on MX Series versions 23.2 antérieures à 23.2R2
Juniper Networks	N/A	Junos OS on MX Series versions antérieures à 21.2R3-S6
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 22.1 antérieures à 22.1R3-S5
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 22.2 antérieures à 22.2R3-S3
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 22.3 antérieures à 22.3R3-S2
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 22.4 antérieures à 22.4R3-S1
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 23.2 antérieures à 23.2R2
Juniper Networks	N/A	Junos OS on MX Series with SPC3 line card versions 23.4 antérieures à 23.4R2
Juniper Networks	N/A	Junos OS on QFX5000 Series and EX4600 Series versions 21.4 antérieures à 21.4R3-S6
Juniper Networks	N/A	Junos OS on QFX5000 Series and EX4600 Series versions 22.1 antérieures à 22.1R3-S5
Juniper Networks	N/A	Junos OS on QFX5000 Series and EX4600 Series versions 22.2 antérieures à 22.2R3-S3
Juniper Networks	N/A	Junos OS on QFX5000 Series and EX4600 Series versions 22.3 antérieures à 22.3R3-S2
Juniper Networks	N/A	Junos OS on QFX5000 Series and EX4600 Series versions 22.4 antérieures à 22.4R3
Juniper Networks	N/A	Junos OS on QFX5000 Series and EX4600 Series versions 23.2 antérieures à 23.2R2
Juniper Networks	N/A	Junos OS on QFX5000 Series and EX4600 Series versions antérieures à 21.2R3-S7
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 21.4 antérieures à 21.4R3-S7
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 22.1 antérieures à 22.1R3-S2
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 22.2 antérieures à 22.2R3-S1
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 22.3 antérieures à 22.3R2-S1
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 22.3 antérieures à 22.3R3
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 22.4 antérieures à 22.4R1-S2
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 22.4 antérieures à 22.4R2
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions 22.4 antérieures à 22.4R3
Juniper Networks	N/A	Junos OS on SRX Series, MX Series with SPC3 and NFX350 versions antérieures à 21.2R3-S8
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 21.4 antérieures à 21.4R3-S7
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 22.1 antérieures à 22.1R3-S6
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 22.2 antérieures à 22.2R3-S4
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 22.3 antérieures à 22.3R3-S3
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 22.4 antérieures à 22.4R3-S2
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 23.2 antérieures à 23.2R2
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 23.4 antérieures à 23.4R1-S1
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions 23.4 antérieures à 23.4R2
Juniper Networks	N/A	Junos OS on SRX4600 and SRX5000 Series versions antérieures à 21.2R3-S8
Juniper Networks	N/A	Junos OS versions 21.3 antérieures à 21.3R3-S5
Juniper Networks	N/A	Junos OS versions 21.4 antérieures à 21.4R2
Juniper Networks	N/A	Junos OS versions 22.1 antérieures à 22.1R3-S6
Juniper Networks	N/A	Junos OS versions 22.2 antérieures à 22.2R2-S1
Juniper Networks	N/A	Junos OS versions 22.2 antérieures à 22.2R3-S4
Juniper Networks	N/A	Junos OS versions 22.3 antérieures à 22.3R1-S2
Juniper Networks	N/A	Junos OS versions 22.3 antérieures à 22.3R3-S3
Juniper Networks	N/A	Junos OS versions 22.4 antérieures à 22.4R2-S2
Juniper Networks	N/A	Junos OS versions 22.4 antérieures à 22.4R3-S3
Juniper Networks	N/A	Junos OS versions 23.1 antérieures à 23.1R2
Juniper Networks	N/A	Junos OS versions 23.2 antérieures à 23.2R2-S1
Juniper Networks	N/A	Junos OS versions 23.4 antérieures à 23.4R1-S2
Juniper Networks	N/A	Junos OS versions 23.4 antérieures à 23.4R2
Juniper Networks	N/A	Junos OS versions antérieures à 20.4R3-S9
Juniper Networks	N/A	Junos OS versions antérieures à 21.2R3-S8
Juniper Networks	N/A	Junos OS versions antérieures à 21.4R3-S8
Juniper Networks	N/A	Junos OS versions antérieures à 22.1R2-S2
Juniper Networks	N/A	Junos Space versions antérieures à 24.1R1
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 20.4 antérieures à 20.4R3-S10
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 21.2 antérieures à 21.2R3-S6
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 21.3 antérieures à 21.3R3-S5
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 21.4 antérieures à 21.4R3-S6
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 22.1 antérieures à 22.1R3-S4
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 22.2 antérieures à 22.2R3-S2
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 22.3 antérieures à 22.3R3-S1
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 22.4 antérieures à 22.4R3
Juniper Networks	N/A	SRX Series and MX Series with SPC3 and MS-MPC/MIC versions 23.2 antérieures à 23.2R2
Juniper Networks	N/A	Session Smart Router versions 6.1 antérieures à SSR-6.1.8-lts
Juniper Networks	N/A	Session Smart Router versions 6.2 antérieures à SSR-6.2.5-r2
Juniper Networks	N/A	Session Smart Router versions antérieures à SSR-5.6.14
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions 22.1-EVO antérieures à 22.1R3-S6-EVO
Juniper Networks	N/A	Junos OS Evolved on ACX7000 Series versions antérieures à 21.4R3-S7-EVO

URL	Tags
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:4961	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:4962	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:4967	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5069	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5091	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5093	Broken Link, Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5221	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5244	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5255	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5548	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:5627	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:7382	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:7389	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:7411	Third Party Advisory, VDB Entry
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:7417	Third Party Advisory, VDB Entry
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:7431	Third Party Advisory, VDB Entry
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2023:7434	Third Party Advisory, VDB Entry
secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2023-4004	Third Party Advisory
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2225275	Issue Tracking, Third Party Advisory
secalert@redhat.com	https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230719190824.21196-1-fw@strlen.de/	Mailing List, Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/175072/Kernel-Live-Patch-Security-Notice-LSN-0098-1.html
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSN-0099-1.html
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:4961	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:4962	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:4967	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5069	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5091	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5093	Broken Link, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5221	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5244	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5255	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5548	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:5627	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:7382	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:7389	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:7411	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:7417	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:7431	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2023:7434	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/security/cve/CVE-2023-4004	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=2225275	Issue Tracking, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
af854a3a-2127-422b-91ae-364da2661108	https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230719190824.21196-1-fw@strlen.de/	Mailing List, Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20231027-0001/
af854a3a-2127-422b-91ae-364da2661108	https://www.debian.org/security/2023/dsa-5480
af854a3a-2127-422b-91ae-364da2661108	https://www.debian.org/security/2023/dsa-5492

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
fedoraproject	fedora	38
redhat	enterprise_linux	8.0
redhat	enterprise_linux	9.0
netapp	h300s	-
netapp	h410s	-
netapp	h500s	-
netapp	h700s	-
debian	debian_linux	10.0
debian	debian_linux	11.0
debian	debian_linux	12.0

Action not permitted

CVE-2023-4004 (GCVE-0-2023-4004)

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solutions

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solutions

Solution

Solution

Solution

Solutions

Solutions

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution