CVE-2023-4527: Glibc: stack read overflow in getaddrinfo in no-aaaa mode

Description

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack contents through the function returned address data, and may cause a crash.

Classification

CVE ID: CVE-2023-4527

Affected Products

Vendor: Red Hat

Product: Red Hat Enterprise Linux 8

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.15% (probability of being exploited)

EPSS Percentile: 51.5% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://access.redhat.com/errata/RHSA-2023:5453
https://access.redhat.com/errata/RHSA-2023:5455
https://access.redhat.com/security/cve/CVE-2023-4527
https://bugzilla.redhat.com/show_bug.cgi?id=2234712

Timeline

2024-12-04 00:11:20 UTC
CVE

Glibc: stack read overflow in getaddrinfo in no-aaaa mode