🔐 CVE Alert

CVE-2023-3812

HIGH 7.8

Kernel: tun: bugs for oversize packet when napi frags enabled in tun_napi_alloc_frags

CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
0th

An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on the system.

CWE CWE-787
Vendor red hat
Product red hat enterprise linux 8
Published Jul 24, 2023
Last Updated Feb 26, 2026
Stay Ahead of the Next One

Get instant alerts for red hat red hat enterprise linux 8

Be the first to know when new high vulnerabilities affecting red hat red hat enterprise linux 8 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

Red Hat / Red Hat Enterprise Linux 8
All versions affected
Red Hat / Red Hat Enterprise Linux 8
All versions affected
Red Hat / Red Hat Enterprise Linux 8
All versions affected
Red Hat / Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.2 Advanced Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.2 Telecommunications Update Service
All versions affected
Red Hat / Red Hat Enterprise Linux 8.2 Telecommunications Update Service
All versions affected
Red Hat / Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Telecommunications Update Service
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Telecommunications Update Service
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
All versions affected
Red Hat / Red Hat Enterprise Linux 8.6 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.6 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.8 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 8.8 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected
Red Hat / Red Hat Enterprise Linux 9.0 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9.0 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9.0 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9.2 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9.2 Extended Update Support
All versions affected
Red Hat / Red Hat Enterprise Linux 9.2 Extended Update Support
All versions affected
Red Hat / Red Hat Virtualization 4 for Red Hat Enterprise Linux 8
All versions affected
Red Hat / Red Hat Enterprise Linux 6
All versions affected
Red Hat / Red Hat Enterprise Linux 7
All versions affected
Red Hat / Red Hat Enterprise Linux 7
All versions affected
Red Hat / Red Hat Enterprise Linux 9
All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗
access.redhat.com: https://access.redhat.com/errata/RHSA-2023:6799 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:6813 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7370 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7379 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7382 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7389 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7411 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7418 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7548 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7549 access.redhat.com: https://access.redhat.com/errata/RHSA-2023:7554 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0340 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0378 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0412 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0461 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0554 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0562 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0563 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0575 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:0593 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:1961 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:2006 access.redhat.com: https://access.redhat.com/errata/RHSA-2024:2008 access.redhat.com: https://access.redhat.com/security/cve/CVE-2023-3812 bugzilla.redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2224048 git.kernel.org: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=363a5328f4b0