LinuxCVE-2024-45018CVE-2024-45018
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%
In the Linux kernel, the following vulnerability has been resolved:
netfilter: flowtable: initialise extack before use
Fix missing initialisation of extack in flow offload.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc2:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc3:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/netfilter/nf_flow_table_offload.c"
],
"versions": [
{
"version": "c29f74e0df7a",
"lessThan": "e5ceff2196dc",
"status": "affected",
"versionType": "git"
},
{
"version": "c29f74e0df7a",
"lessThan": "356beb911b63",
"status": "affected",
"versionType": "git"
},
{
"version": "c29f74e0df7a",
"lessThan": "7eafeec6be68",
"status": "affected",
"versionType": "git"
},
{
"version": "c29f74e0df7a",
"lessThan": "c7b760499f77",
"status": "affected",
"versionType": "git"
},
{
"version": "c29f74e0df7a",
"lessThan": "119be227bc04",
"status": "affected",
"versionType": "git"
},
{
"version": "c29f74e0df7a",
"lessThan": "e9767137308d",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/netfilter/nf_flow_table_offload.c"
],
"versions": [
{
"version": "5.5",
"status": "affected"
},
{
"version": "0",
"lessThan": "5.5",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.225",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.166",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.107",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.48",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10.7",
"lessThanOrEqual": "6.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.11",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/119be227bc04f5035efa64cb823b8a5ca5e2d1c1
git.kernel.org/stable/c/356beb911b63a8cff34cb57f755c2a2d2ee9dec7
git.kernel.org/stable/c/7eafeec6be68ebd6140a830ce9ae68ad5b67ec78
git.kernel.org/stable/c/c7b760499f7791352b49b11667ed04b23d7f5b0f
git.kernel.org/stable/c/e5ceff2196dc633c995afb080f6f44a72cff6e1d
git.kernel.org/stable/c/e9767137308daf906496613fd879808a07f006a2
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%