Use After Free in Gnu Glibc
CVE-2023-4806
A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _n…
Vulnerability class: Use-After-Free
EPSS: 0.019 (83.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.9 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H.
Affected products
- Gnu Glibc — versions 2.33
- Fedoraproject Fedora — versions 37, 38, 39
- Red Hat Enterprise Linux 6
- Red Hat Enterprise Linux 7
- Red Hat Enterprise Linux 8 — versions 0:2.28-225.el8_8.6
- Red Hat Enterprise Linux 8.6 Extended Update Support — versions 0:2.28-189.8.el8_6
- Red Hat Enterprise Linux 9 — versions 0:2.34-100.el9, 0:2.34-60.el9_2.7
- Red Hat Virtualization 4 For Enterprise Linux 8 — versions 0:2.28-189.8.el8_6
- Redhat Codeready_linux_builder_eus — versions 9.2
- Redhat Codeready_linux_builder_eus_for_power_little_endian — versions 9.0_ppc64le
Weakness classification (CWE)
Public proof-of-concept exploits
References
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, Third Party Advisory, vdb-entry)
- secalert@redhat.com (x_refsource_REDHAT, issue-tracking, Third Party Advisory, Issue Tracking)
- af854a3a-2127-422b-91ae-364da2661108
- af854a3a-2127-422b-91ae-364da2661108
- af854a3a-2127-422b-91ae-364da2661108
- af854a3a-2127-422b-91ae-364da2661108
Frequently asked questions
- What is CVE-2023-4806?
- CVE-2023-4806 is a medium-severity vulnerability in Gnu Glibc, classified under Use After Free. CVSS score: 5.9/10. Published 2023-09-18.
- How severe is CVE-2023-4806?
- Medium severity. CVSS v3 base score is 5.9 out of 10.
- Is CVE-2023-4806 known to be exploited?
- 7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.