CVE-2023-34319 — HIGH (7.8)

Q: How severe is CVE-2023-34319?

CVE-2023-34319 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-34319?

Check the references section above for vendor advisories and patch information. Affected products include: Xen Xen, Debian Debian Linux, Linux Linux Kernel.

Vulnerability Description

The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many pieces as permitted by the protocol, yet still being smaller than the area that's specially dealt with to keep all (possible) headers together. Such an unusual packet would therefore trigger a buffer overrun in the driver.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Xen	Xen	>= 3.2.0
Debian	Debian Linux	10.0
Linux	Linux Kernel	>= 4.9.336, < 4.10

Related Weaknesses (CWE)

CWE-787

References

http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSThird Party AdvisoryVDB Entry
https://lists.debian.org/debian-lts-announce/2024/01/msg00004.htmlThird Party Advisory
https://security.netapp.com/advisory/ntap-20240202-0001/Third Party Advisory
https://xenbits.xenproject.org/xsa/advisory-432.htmlMitigationPatchVendor Advisory
http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LSThird Party AdvisoryVDB Entry
http://xenbits.xen.org/xsa/advisory-432.html
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html
https://lists.debian.org/debian-lts-announce/2024/01/msg00004.htmlThird Party Advisory
https://security.netapp.com/advisory/ntap-20240202-0001/Third Party Advisory
https://xenbits.xenproject.org/xsa/advisory-432.htmlMitigationPatchVendor Advisory

FAQ

What is CVE-2023-34319?

CVE-2023-34319 is a vulnerability with a CVSS score of 7.8 (HIGH). The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introd...

How severe is CVE-2023-34319?

CVE-2023-34319 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-34319?

Check the references section above for vendor advisories and patch information. Affected products include: Xen Xen, Debian Debian Linux, Linux Linux Kernel.