CVE-2023-28772

kernel: lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow

Severity Score

6.7

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

NVD
RedHat

An issue was discovered in the Linux kernel before 5.13.3. lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow.

A buffer overflow write flaw was identified in seq_buf_putmem_hex in lib/seq_buf.c in seq_buf in the Linux Kernel. This issue may allow a user with special debug privileges such as ftrace or root to cause an overflow in the destination buffer due to a missing sanity check.

*Credits: N/A

CVSS Scores

NISTv3.1 6.7

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-03-23 CVE Reserved
2023-03-23 CVE Published
2024-06-27 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CAPEC

References (7)

URL	Tag	Source
https://lkml.kernel.org/r/20210626032156.47889-1-yun.zhou%40windriver.com
https://lore.kernel.org/lkml/20210625122453.5e2fe304%40oasis.local.home
https://security.netapp.com/advisory/ntap-20230427-0005	Third Party Advisory

URL	Date	SRC

URL	Date	SRC
https://github.com/torvalds/linux/commit/d3b16034a24a112bb83aeb669ac5b9b01f744bb7	2023-11-07

URL	Date	SRC
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.13.3	2023-11-07
https://access.redhat.com/security/cve/CVE-2023-28772	2024-03-19
https://bugzilla.redhat.com/show_bug.cgi?id=2181330	2024-03-19

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.27 < 4.4.276 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.27 < 4.4.276"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.5 < 4.9.276 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.5 < 4.9.276"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.10 < 4.14.240 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.10 < 4.14.240"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.15 < 4.19.198 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.15 < 4.19.198"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.20 < 5.4.133 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.20 < 5.4.133"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.5 < 5.10.51 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.5 < 5.10.51"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.11 < 5.12.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.11 < 5.12.18"		-		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.13 < 5.13.3 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.13 < 5.13.3"		-		Affected