Show plain JSON{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-52433", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-02-20T12:30:33.290Z", "datePublished": "2024-02-20T12:52:56.753Z", "dateUpdated": "2024-12-19T08:19:25.522Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-12-19T08:19:25.522Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_rbtree: skip sync GC for new elements in this transaction\n\nNew elements in this transaction might expired before such transaction\nends. Skip sync GC for such elements otherwise commit path might walk\nover an already released object. Once transaction is finished, async GC\nwill collect such expired element."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/netfilter/nft_set_rbtree.c"], "versions": [{"version": "cb4d00b563675ba8ff6ef94b077f58d816f68ba3", "lessThan": "9db9feb841f7449772f9393c16b9ef4536d8c127", "status": "affected", "versionType": "git"}, {"version": "c357648929c8dff891502349769aafb8f0452bc2", "lessThan": "03caf75da1059f0460666c826e9f50e13dfd0017", "status": "affected", "versionType": "git"}, {"version": "146c76866795553dbc19998f36718d7986ad302b", "lessThan": "c323ed65f66e5387ee0a73452118d49f1dae81b8", "status": "affected", "versionType": "git"}, {"version": "479a2cf5259347d6a1f658b0f791d27a34908e91", "lessThan": "9af7dfb3c9d7985172a240f85e684c5cd33e29ce", "status": "affected", "versionType": "git"}, {"version": "df650d6a4bf47248261b61ef6b174d7c54034d15", "lessThan": "9a8c544158f68f656d1734eb5ba00c4f817b76b1", "status": "affected", "versionType": "git"}, {"version": "f6c383b8c31a93752a52697f8430a71dcbc46adf", "lessThan": "e3213ff99a355cda811b41e8dbb3472d13167a3a", "status": "affected", "versionType": "git"}, {"version": "f6c383b8c31a93752a52697f8430a71dcbc46adf", "lessThan": "2ee52ae94baabf7ee09cf2a8d854b990dac5d0e4", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/netfilter/nft_set_rbtree.c"], "versions": [{"version": "6.5", "status": "affected"}, {"version": "0", "lessThan": "6.5", "status": "unaffected", "versionType": "semver"}, {"version": "6.5.4", "lessThanOrEqual": "6.5.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/9db9feb841f7449772f9393c16b9ef4536d8c127"}, {"url": "https://git.kernel.org/stable/c/03caf75da1059f0460666c826e9f50e13dfd0017"}, {"url": "https://git.kernel.org/stable/c/c323ed65f66e5387ee0a73452118d49f1dae81b8"}, {"url": "https://git.kernel.org/stable/c/9af7dfb3c9d7985172a240f85e684c5cd33e29ce"}, {"url": "https://git.kernel.org/stable/c/9a8c544158f68f656d1734eb5ba00c4f817b76b1"}, {"url": "https://git.kernel.org/stable/c/e3213ff99a355cda811b41e8dbb3472d13167a3a"}, {"url": "https://git.kernel.org/stable/c/2ee52ae94baabf7ee09cf2a8d854b990dac5d0e4"}], "title": "netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction", "x_generator": {"engine": "bippy-5f407fcff5a0"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-273", "lang": "en", "description": "CWE-273 Improper Check for Dropped Privileges"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-04-04T15:13:28.886659Z", "id": "CVE-2023-52433", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-06T21:23:39.384Z"}}, {"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/9db9feb841f7449772f9393c16b9ef4536d8c127", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/03caf75da1059f0460666c826e9f50e13dfd0017", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/c323ed65f66e5387ee0a73452118d49f1dae81b8", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/9af7dfb3c9d7985172a240f85e684c5cd33e29ce", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/9a8c544158f68f656d1734eb5ba00c4f817b76b1", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/e3213ff99a355cda811b41e8dbb3472d13167a3a", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/2ee52ae94baabf7ee09cf2a8d854b990dac5d0e4", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20240828-0003/"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-28T15:02:46.362Z"}}]}}