CVE-2023-53566
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-53566
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53566.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53566
- Downstream
- Published
- 2025-10-04T15:17:08Z
- Modified
- 2025-10-16T19:58:18.651415Z
- Summary
- netfilter: nft_set_rbtree: fix null deref on element insertion
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nftsetrbtree: fix null deref on element insertion
There is no guarantee that rbprev() will not return NULL in nftrbtreegcelem():
general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] nftaddsetelem+0x14b0/0x2990 nftables_newsetelem+0x528/0xb30
Furthermore, there is a possible use-after-free while iterating, 'node' can be free'd so we need to cache the next value to use.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/3fa13203b6d90cc3a33af47b058739f92ab82eef
- https://git.kernel.org/stable/c/61ae320a29b0540c16931816299eb86bf2b66c08
- https://git.kernel.org/stable/c/899aa5638568abf5d69de7a7bb95e4615157375b
- https://git.kernel.org/stable/c/a337706c1fb35aac3f26b48aca80421bdbe1d33a
- https://git.kernel.org/stable/c/a836be60a3aabcedcd9c79f545d409ace1f20ba6
- https://git.kernel.org/stable/c/b76db53ee8802ee5683f8cb401d7e2ec6f9b3d56
- https://git.kernel.org/stable/c/ec5caa765f7f6960011c919c9aeb1467940421f6
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7ab87a326f20c52ff4d9972052d085be951c704bFixedb76db53ee8802ee5683f8cb401d7e2ec6f9b3d56
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced181859bdfb9734aca449512fccaee4cacce64aedFixed899aa5638568abf5d69de7a7bb95e4615157375b
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4aacf3d78424293e318c616016865380b37b9cc5Fixed3fa13203b6d90cc3a33af47b058739f92ab82eef
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2bf1435fa19d2c58054391b3bba40d5510a5758cFixedec5caa765f7f6960011c919c9aeb1467940421f6
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced318cb24a4c3fce8140afaf84e4d45fcb76fb280bFixeda836be60a3aabcedcd9c79f545d409ace1f20ba6
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc9e6978e2725a7d4b6cd23b2facd3f11422c0643Fixeda337706c1fb35aac3f26b48aca80421bdbe1d33a
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc9e6978e2725a7d4b6cd23b2facd3f11422c0643Fixed61ae320a29b0540c16931816299eb86bf2b66c08
Affected versions
v5.*
v5.10.166
v5.10.167
v5.10.168
v5.10.169
v5.10.170
v5.10.171
v5.10.172
v5.10.173
v5.10.174
v5.10.175
v5.10.176
v5.10.177
v5.10.178
v5.10.179
v5.10.180
v5.15.100
v5.15.101
v5.15.102
v5.15.103
v5.15.104
v5.15.105
v5.15.106
v5.15.107
v5.15.108
v5.15.109
v5.15.110
v5.15.111
v5.15.112
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v6.*
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.9
v6.2
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.3.1
v6.3.2
v6.3.3
v6.4-rc1
Linux / Kernel
Package
- Name
- Kernel