Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ALAS2LIVEPATCH-2023-140

Related Vulnerabilities: CVE-2023-2156   CVE-2023-3090   CVE-2023-35788  

A flaw was found in the Linux kernel's networking subsystem within the RPL protocol's handling. This issue results from the improper handling of user-supplied data, which can lead to an assertion failure. This flaw allows an unauthenticated, remote attacker to create a denial of service condition on the system. (CVE-2023-2156) A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The out-of-bounds write is caused by missing skb->cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIG_IPVLAN is enabled. We recommend upgrading past commit 90cbed5247439a966b645b34eb0a2e037836ea8e. (CVE-2023-3090) An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service or privilege escalation. (CVE-2023-35788)

Source

ALAS2LIVEPATCH-2023-140

Amazon Linux 2 Security Advisory: ALASLIVEPATCH-2023-140
Advisory Release Date: 2023-08-17 17:03 Pacific
Advisory Updated Date: 2023-08-23 00:12 Pacific
Severity: Important
Issue Overview:

A flaw was found in the Linux kernel's networking subsystem within the RPL protocol's handling. This issue results from the improper handling of user-supplied data, which can lead to an assertion failure. This flaw allows an unauthenticated, remote attacker to create a denial of service condition on the system. (CVE-2023-2156)

A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation.

The out-of-bounds write is caused by missing skb->cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIG_IPVLAN is enabled.


We recommend upgrading past commit 90cbed5247439a966b645b34eb0a2e037836ea8e. (CVE-2023-3090)

An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service or privilege escalation. (CVE-2023-35788)


Affected Packages:

kernel-livepatch-5.10.178-162.673


Issue Correction:
Please ensure you have live patching enabled.
Run yum update kernel-livepatch-5.10.178-162.673 to update your system.

New Packages:
aarch64:
    kernel-livepatch-5.10.178-162.673-1.0-2.amzn2.aarch64
    kernel-livepatch-5.10.178-162.673-debuginfo-1.0-2.amzn2.aarch64

src:
    kernel-livepatch-5.10.178-162.673-1.0-2.amzn2.src

x86_64:
    kernel-livepatch-5.10.178-162.673-1.0-2.amzn2.x86_64
    kernel-livepatch-5.10.178-162.673-debuginfo-1.0-2.amzn2.x86_64

Additional References

Red Hat: CVE-2023-2156, CVE-2023-3090, CVE-2023-35788

Mitre: CVE-2023-2156, CVE-2023-3090, CVE-2023-35788

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started