CVE-2023-6779: 
NixOS vulnerability analysis and mitigation

An off-by-one heap-based buffer overflow vulnerability (CVE-2023-6779) was discovered in the __vsyslog_internal function of the glibc library. This function is called by both syslog and vsyslog functions. The vulnerability was introduced in glibc 2.37 (August 2022) and affects versions up to 2.39. The issue occurs when these functions are called with a message bigger than INT_MAX bytes, leading to an incorrect calculation of the buffer size to store the message, which can result in an application crash (NVD, Debian).

The vulnerability exists in the __vsyslog_internal function where if the snprintf/vsnprintf functions fail and return -1, the resulting buffer would be too small to hold the output. When these functions are called with a message bigger than INT_MAX bytes, it leads to an incorrect calculation of the buffer size, resulting in a heap-based buffer overflow. The vulnerability has been assigned a CVSS v3.1 base score of 7.5 (HIGH) with vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (NVD).

Successful exploitation of this vulnerability could lead to Denial of Service (DoS). In some cases, it could potentially lead to local privilege escalation, allowing an unprivileged user to gain root privileges on affected systems (NetApp).

The vulnerability has been fixed in glibc version 2.39. Various Linux distributions have released security updates to address this issue. For example, Fedora has released updates glibc-2.38-16.fc39 for Fedora 39 and glibc-2.37-18.fc38 for Fedora 38. Users are strongly advised to upgrade to the patched versions (Fedora).