Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-5369

Before correction, the copy_file_range system call checked only for the CAP_READ and CAP_WRITE capabilities on the input and output file descriptors, respectively. Using an offset is logically equivalent to seeking, and the system call must additionally require the CAP_SEEK capability. This incorrect privilege check enabled sandboxed processes with only read or write but no seek capability on a file descriptor to read data from or write data to an arbitrary location within the file corresponding to that file descriptor.

Published

2023-10-04T04:15:14.627

Last Modified

2024-11-21T08:41:37.637

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses

Type: Secondary
CWE-273
Type: Primary
CWE-273

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	freebsd	freebsd	13.2	Yes

References

https://security.FreeBSD.org/advisories/FreeBSD-SA-23:13.capsicum.asc Vendor Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20231124-0009/ ([email protected])
https://security.FreeBSD.org/advisories/FreeBSD-SA-23:13.capsicum.asc Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20231124-0009/ (af854a3a-2127-422b-91ae-364da2661108)