{"id":"CVE-2023-4387","details":"A use-after-free flaw was found in vmxnet3_rq_alloc_rx_buf in drivers/net/vmxnet3/vmxnet3_drv.c in VMware's vmxnet3 ethernet NIC driver in the Linux Kernel. This issue could allow a local attacker to crash the system due to a double-free while cleaning up vmxnet3_rq_cleanup_all, which could also lead to a kernel information leak problem.","modified":"2026-03-13T07:44:40.400173Z","published":"2023-08-16T19:15:10.087Z","related":["SUSE-SU-2023:3599-1","SUSE-SU-2023:3599-2","SUSE-SU-2023:3600-1","SUSE-SU-2023:3600-2","SUSE-SU-2023:3601-1","SUSE-SU-2023:3656-1","SUSE-SU-2023:3680-1","SUSE-SU-2023:3681-1","SUSE-SU-2023:3682-1","SUSE-SU-2023:3684-1","SUSE-SU-2023:3687-1","SUSE-SU-2023:3705-1","SUSE-SU-2023:3785-1","SUSE-SU-2023:3964-1","SUSE-SU-2023:3969-1","SUSE-SU-2023:3971-1","SUSE-SU-2023:3988-1"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2022:7683"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2022:8267"},{"type":"ADVISORY","url":"https://access.redhat.com/security/cve/CVE-2023-4387"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2219270"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/9e7fef9521e73ca8afd7da9e58c14654b02dfad8"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-4387.json","unresolved_ranges":[{"events":[{"introduced":"3.16.60"},{"fixed":"3.17"}]},{"events":[{"introduced":"4.4"},{"fixed":"4.9.316"}]},{"events":[{"introduced":"4.10"},{"fixed":"4.14.281"}]},{"events":[{"introduced":"4.15"},{"fixed":"4.19.245"}]},{"events":[{"introduced":"4.20"},{"fixed":"5.4.196"}]},{"events":[{"introduced":"5.5"},{"fixed":"5.10.118"}]},{"events":[{"introduced":"5.11"},{"fixed":"5.15.42"}]},{"events":[{"introduced":"5.16"},{"fixed":"5.17.10"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}]}