CVE-2023-4128 Information

Description

A use-after-free flaw was found in net/sched/cls_fw.c in classifiers (cls_fw cls_u32 and cls_route) in the Linux Kernel. This flaw allows a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter leading to a kernel information leak issue.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2225511 https://lore.kernel.org/netdev/193d6cdf-d6c9-f9be-c36a-b2a7551d5fb6@mojatatu.com/ https://access.redhat.com/security/cve/CVE-2023-4128