{"id":"CVE-2023-1829","summary":"Use-after-free in tcindex (traffic control index filter) in the Linux Kernel","details":"A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The tcindex_delete function which does not properly deactivate filters in case of a perfect hashes while deleting the underlying structure which can later lead to double freeing the structure. A local attacker user can use this vulnerability to elevate its privileges to root.\nWe recommend upgrading past commit 8c710f75256bb3cf05ac7b1672c82b92c43f3d28.","modified":"2026-05-28T03:54:40.658315535Z","published":"2023-04-12T11:16:59.101Z","related":["ALSA-2023:4517","ALSA-2023:4541","SUSE-SU-2023:2803-1","SUSE-SU-2023:2820-1","SUSE-SU-2023:2831-1","SUSE-SU-2023:2871-1","SUSE-SU-2023:2892-1","SUSE-SU-2023:3302-1","SUSE-SU-2023:3748-1","SUSE-SU-2023:3749-1","SUSE-SU-2023:3768-1","SUSE-SU-2023:3772-1","SUSE-SU-2023:3783-1","SUSE-SU-2023:3784-1","SUSE-SU-2023:3786-1","SUSE-SU-2023:3788-1","SUSE-SU-2023:3809-1","SUSE-SU-2023:3811-1","SUSE-SU-2023:3812-1","SUSE-SU-2023:3838-1","SUSE-SU-2023:3844-1","SUSE-SU-2023:3846-1","SUSE-SU-2023:3889-1","SUSE-SU-2023:3891-1","SUSE-SU-2023:3892-1","SUSE-SU-2023:3893-1","SUSE-SU-2023:3912-1","SUSE-SU-2023:3922-1","SUSE-SU-2023:3928-1","SUSE-SU-2023:4097-1","SUSE-SU-2023:4135-1","SUSE-SU-2023:4136-1","SUSE-SU-2023:4158-1","SUSE-SU-2023:4159-1","SUSE-SU-2023:4160-1","SUSE-SU-2023:4243-1","SUSE-SU-2023:4261-1","SUSE-SU-2023:4264-1","SUSE-SU-2023:4273-1","SUSE-SU-2023:4280-1","SUSE-SU-2023:4319-1","SUSE-SU-2023:4774-1","SUSE-SU-2023:4804-1","SUSE-SU-2023:4845-1","SUSE-SU-2024:0155-1","SUSE-SU-2024:0376-1","SUSE-SU-2024:0377-1","SUSE-SU-2024:0393-1","SUSE-SU-2024:0394-1","SUSE-SU-2024:0410-1","SUSE-SU-2024:0665-1","SUSE-SU-2024:0695-1","SUSE-SU-2024:1275-1","SUSE-SU-2024:1276-1","SUSE-SU-2024:1694-1","SUSE-SU-2024:1708-1","SUSE-SU-2024:1719-1","SUSE-SU-2024:1730-1","SUSE-SU-2024:1738-1","SUSE-SU-2024:1979-1","SUSE-SU-2024:1983-1","SUSE-SU-2024:2008-1","SUSE-SU-2024:2010-1","SUSE-SU-2024:2019-1","SUSE-SU-2024:2120-1","SUSE-SU-2024:2121-1","SUSE-SU-2024:2130-1","SUSE-SU-2024:2139-1","SUSE-SU-2024:2147-1","SUSE-SU-2024:2148-1","SUSE-SU-2024:2149-1","SUSE-SU-2024:2183-1","SUSE-SU-2024:2184-1","SUSE-SU-2024:2185-1","SUSE-SU-2024:2189-1","SUSE-SU-2024:2190-1","SUSE-SU-2024:2343-1","SUSE-SU-2024:2344-1","SUSE-SU-2024:2351-1","SUSE-SU-2024:2357-1","SUSE-SU-2024:2369-1","SUSE-SU-2024:2373-1","SUSE-SU-2024:2558-1","SUSE-SU-2024:2559-1","SUSE-SU-2024:2740-1","SUSE-SU-2024:2755-1","SUSE-SU-2024:2758-1","SUSE-SU-2024:2759-1","SUSE-SU-2024:2773-1","SUSE-SU-2024:2792-1","SUSE-SU-2024:2821-1","SUSE-SU-2024:2822-1","SUSE-SU-2024:3015-1","SUSE-SU-2024:3034-1","SUSE-SU-2024:3037-1","SUSE-SU-2024:3039-1","SUSE-SU-2024:3043-1","SUSE-SU-2024:3044-1","SUSE-SU-2024:3048-1","SUSE-SU-2024:3642-1","SUSE-SU-2024:3649-1","SUSE-SU-2024:3651-1","SUSE-SU-2024:3652-1","SUSE-SU-2024:3662-1","SUSE-SU-2024:3663-1","SUSE-SU-2024:3685-1","SUSE-SU-2024:3796-1","SUSE-SU-2024:3798-1","SUSE-SU-2024:3803-1","SUSE-SU-2024:3814-1","SUSE-SU-2024:3820-1","SUSE-SU-2024:3821-1","SUSE-SU-2024:3849-1","SUSE-SU-2024:3854-1","SUSE-SU-2024:4180-1","SUSE-SU-2024:4226-1","SUSE-SU-2024:4242-1","SUSE-SU-2024:4249-1","SUSE-SU-2024:4250-1","SUSE-SU-2024:4256-1","SUSE-SU-2024:4263-1","SUSE-SU-2024:4264-1","SUSE-SU-2025:0091-1","SUSE-SU-2025:0101-1","SUSE-SU-2025:0103-1","SUSE-SU-2025:0106-1","SUSE-SU-2025:0137-1","SUSE-SU-2025:0238-1","SUSE-SU-2025:0240-1","SUSE-SU-2025:0244-1","openSUSE-SU-2024:13281-1"],"database_specific":{"cna_assigner":"Google","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/1xxx/CVE-2023-1829.json","cwe_ids":["CWE-416"]},"references":[{"type":"WEB","url":"https://git.kernel.org"},{"type":"WEB","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8c710f75256bb3cf05ac7b1672c82b92c43f3d28"},{"type":"WEB","url":"https://kernel.dance/#8c710f75256bb3cf05ac7b1672c82b92c43f3d28"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/1xxx/CVE-2023-1829.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-1829"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20230601-0001/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"19f949f52599ba7c3f67a5897ac6be14bfcb1200"},{"last_affected":"c9c3395d5e3dcc6daee66c6908354d47bf98cb0c"}],"database_specific":{"source":"AFFECTED_FIELD","extracted_events":[{"introduced":"3.8"},{"last_affected":"6.2"}]}}],"versions":["v6.2-rc6","v6.2-rc1","v6.2","v6.2-rc2","v6.2-rc8","v6.2-rc5","v6.2-rc4","v6.2-rc7","v6.2-rc3","v6.1-rc1","v6.1","v6.1-rc8","v6.1-rc3","v6.1-rc6","v6.1-rc7","v6.1-rc4","v6.1-rc2","v6.1-rc5","v6.0-rc1","v6.0","v6.0-rc7","v6.0-rc3","v6.0-rc2","v6.0-rc6","v6.0-rc4","v6.0-rc5","v5.19","v5.19-rc1","v5.19-rc5","v5.19-rc8","v5.19-rc6","v5.18","v5.19-rc2","v5.19-rc7","v5.19-rc3","v5.19-rc4","v5.18-rc1","v5.18-rc7","v5.18-rc2","v5.18-rc5","v5.17","v5.18-rc4","v5.18-rc3","v5.18-rc6","v5.17-rc6","v5.17-rc4","v5.17-rc8","v5.17-rc7","v5.17-rc1","v5.17-rc3","v5.17-rc2","v5.17-rc5","v5.16","v5.16-rc1","v5.16-rc8","v5.16-rc5","v5.16-rc6","v5.16-rc7","v5.16-rc3","v5.16-rc2","v5.16-rc4","v5.15","v5.15-rc2","v5.15-rc1","v5.15-rc4","v5.15-rc7","v5.15-rc3","v5.15-rc5","v5.15-rc6","v5.14","v5.14-rc3","v5.14-rc1","v5.14-rc2","v5.14-rc7","v5.14-rc6","v5.13-rc1","v5.14-rc5","v5.14-rc4","v5.13","v5.13-rc6","v5.13-rc7","v5.13-rc3","v5.13-rc2","v5.13-rc4","v5.13-rc5","v5.12","v5.12-rc2","v5.12-rc1-dontuse","v5.12-rc1","v5.12-rc8","v5.12-rc3","v5.12-rc7","v5.12-rc5","v5.12-rc6","v5.12-rc4","v5.10","v5.11","v5.11-rc3","v5.11-rc7","v5.11-rc6","v5.11-rc5","v5.11-rc1","v5.11-rc4","v5.11-rc2","v5.10-rc1","v5.10-rc7","v5.10-rc4","v5.10-rc3","v5.10-rc6","v5.9","v5.10-rc2","v5.10-rc5","v5.9-rc1","v5.9-rc7","v5.9-rc8","v5.9-rc6","v5.9-rc4","v5.9-rc5","v5.9-rc3","v5.9-rc2","v5.8","v5.7","v5.8-rc2","v5.8-rc1","v5.8-rc7","v5.8-rc5","v5.8-rc3","v5.8-rc4","v5.8-rc6","v5.7-rc4","v5.7-rc7","v5.7-rc1","v5.7-rc3","v5.7-rc2","v5.7-rc5","v5.7-rc6","v5.6","v5.6-rc1","v5.6-rc7","v5.6-rc6","v5.6-rc3","v5.6-rc4","v5.6-rc2","v5.6-rc5","v5.5","v5.5-rc5","v5.5-rc7","v5.5-rc2","v5.5-rc1","v5.4","v5.5-rc4","v5.5-rc3","v5.5-rc6","v5.4-rc1","v5.4-rc6","v5.4-rc3","v5.4-rc4","v5.4-rc8","v5.4-rc7","v5.4-rc5","v5.3","v5.4-rc2","v5.3-rc5","v5.3-rc1","v5.3-rc2","v5.3-rc3","v5.3-rc8","v5.3-rc7","v5.3-rc4","v5.2","v5.3-rc6","v5.2-rc2","v5.2-rc7","v5.2-rc4","v5.2-rc1","v5.2-rc5","v5.2-rc6","v5.2-rc3","v5.1","v5.0-rc8","v5.1-rc7","v5.1-rc1","v5.1-rc6","v5.1-rc5","v5.0","v5.1-rc3","v5.1-rc2","v5.1-rc4","v5.0-rc1","v5.0-rc4","v5.0-rc3","v5.0-rc6","v5.0-rc7","v5.0-rc2","v5.0-rc5","v4.20-rc1","v4.19","v4.20","v4.20-rc7","v4.20-rc5","v4.20-rc6","v4.20-rc4","v4.20-rc2","v4.20-rc3","v4.19-rc2","v4.19-rc8","v4.19-rc4","v4.19-rc1","v4.19-rc7","v4.19-rc6","v4.19-rc5","v4.19-rc3","v4.18","v4.18-rc1","v4.18-rc8","v4.18-rc2","v4.18-rc5","v4.18-rc6","v4.18-rc7","v4.17","v4.18-rc3","v4.18-rc4","v4.17-rc1","v4.17-rc2","v4.17-rc7","v4.17-rc3","v4.17-rc4","v4.16","v4.17-rc6","v4.17-rc5","v4.16-rc7","v4.16-rc4","v4.16-rc1","v4.16-rc2","v4.16-rc5","v4.16-rc3","v4.16-rc6","v4.14","v4.15","v4.15-rc1","v4.15-rc4","v4.15-rc9","v4.15-rc8","v4.15-rc7","v4.15-rc3","v4.15-rc2","v4.15-rc5","v4.15-rc6","v4.14-rc1","v4.14-rc7","v4.14-rc3","v4.13","v4.14-rc8","v4.14-rc4","v4.14-rc6","v4.14-rc2","v4.14-rc5","v4.13-rc2","v4.13-rc1","v4.13-rc3","v4.13-rc7","v4.13-rc4","v4.13-rc5","v4.13-rc6","v4.12-rc1","v4.12","v4.12-rc5","v4.12-rc7","v4.12-rc6","v4.12-rc4","v4.12-rc2","v4.12-rc3","v4.11","v4.11-rc1","v4.11-rc6","v4.11-rc8","v4.11-rc7","v4.11-rc3","v4.11-rc5","v4.11-rc2","v4.11-rc4","v4.10","v4.9","v4.10-rc8","v4.10-rc3","v4.10-rc1","v4.10-rc7","v4.10-rc6","v4.10-rc2","v4.10-rc5","v4.10-rc4","v4.9-rc7","v4.9-rc6","v4.9-rc8","v4.9-rc1","v4.9-rc5","v4.9-rc3","v4.9-rc4","v4.9-rc2","v4.8","v4.8-rc8","v4.8-rc2","v4.8-rc1","v4.8-rc7","v4.8-rc6","v4.8-rc5","v4.8-rc4","v4.8-rc3","v4.7","v4.7-rc4","v4.7-rc2","v4.7-rc1","v4.7-rc7","v4.7-rc6","v4.7-rc3","v4.7-rc5","v4.6","v4.6-rc1","v4.6-rc6","v4.6-rc4","v4.6-rc7","v4.6-rc5","v4.5-rc4","v4.6-rc2","v4.6-rc3","v4.5","v4.4","v4.5-rc1","v4.5-rc6","v4.5-rc2","v4.5-rc7","v4.5-rc5","v4.5-rc3","v4.4-rc1","v4.4-rc2","v4.4-rc8","v4.4-rc3","v4.4-rc7","v4.4-rc5","v4.4-rc6","v4.4-rc4","v4.3","v4.3-rc1","v4.3-rc6","v4.3-rc4","v4.3-rc2","v4.3-rc7","v4.3-rc5","v4.3-rc3","v4.2","v4.2-rc2","v4.2-rc1","v4.2-rc8","v4.2-rc4","v4.2-rc6","v4.2-rc7","v4.0-rc5","v4.2-rc5","v4.2-rc3","v4.1-rc2","v4.1","v4.1-rc1","v4.1-rc8","v4.1-rc7","v4.1-rc6","v4.1-rc3","v4.1-rc4","v4.0","v4.1-rc5","v4.0-rc1","v4.0-rc2","v4.0-rc7","v4.0-rc3","v4.0-rc6","v4.0-rc4","v3.19","v3.19-rc7","v3.19-rc5","v3.19-rc1","v3.19-rc6","v3.19-rc4","v3.18-rc1","v3.19-rc3","v3.19-rc2","v3.18","v3.18-rc7","v3.18-rc6","v3.18-rc2","v3.18-rc3","v3.18-rc4","v3.18-rc5","v3.17","v3.17-rc1","v3.17-rc7","v3.17-rc2","v3.17-rc4","v3.16","v3.17-rc5","v3.17-rc6","v3.17-rc3","v3.16-rc7","v3.16-rc1","v3.16-rc3","v3.16-rc5","v3.16-rc6","v3.16-rc2","v3.16-rc4","v3.13","v3.15","v3.15-rc5","v3.15-rc8","v3.15-rc1","v3.15-rc6","v3.15-rc3","v3.15-rc7","v3.15-rc2","v3.15-rc4","v3.14","v3.14-rc4","v3.14-rc8","v3.14-rc7","v3.14-rc6","v3.14-rc1","v3.14-rc2","v3.14-rc5","v3.14-rc3","v3.13-rc6","v3.13-rc8","v3.12","v3.13-rc7","v3.13-rc1","v3.13-rc4","v3.13-rc3","v3.13-rc5","v3.13-rc2","v3.12-rc7","v3.12-rc3","v3.12-rc6","v3.12-rc1","v3.12-rc5","v3.11","v3.12-rc2","v3.12-rc4","v3.11-rc7","v3.11-rc2","v3.11-rc5","v3.11-rc1","v3.11-rc3","v3.11-rc4","v3.11-rc6","v3.10-rc2","v3.10","v3.10-rc7","v3.10-rc6","v3.10-rc1","v3.10-rc5","v3.10-rc3","v3.10-rc4","v3.9","v3.9-rc2","v3.9-rc7","v3.9-rc8","v3.9-rc3","v3.9-rc6","v3.9-rc5","v3.9-rc4","v3.9-rc1","v3.8"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-1829.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}