CVE-2023-4806
moderate-risk
Published 2023-09-18
A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.
Do I need to act?
~
1.9% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.9/10
Medium
NETWORK
/ HIGH complexity
Affected Products (20)
Codeready Linux Builder Eus For Power Little Endian
Codeready Linux Builder Eus For Power Little Endian Eus
Codeready Linux Builder For Arm64
Codeready Linux Builder For Arm64 Eus
Codeready Linux Builder For Ibm Z Systems
Codeready Linux Builder For Ibm Z Systems Eus
Enterprise Linux For Ibm Z Systems S390X
Affected Vendors
References (20)
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5453
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5455
Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-4806
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=2237782
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5453
Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:5455
Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-4806
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=2237782
45
/ 100
moderate-risk
Severity
18/34 · Moderate
Exploitability
5/34 · Minimal
Exposure
22/34 · High