Lucene search

K
cvelistLinuxCVELIST:CVE-2024-26581
HistoryFeb 20, 2024 - 12:52 p.m.

CVE-2024-26581 netfilter: nft_set_rbtree: skip end interval element from gc

2024-02-2012:52:57
Linux
www.cve.org
8
linux kernel
netfilter
vulnerability

AI Score

7.6

Confidence

High

EPSS

0

Percentile

5.1%

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_set_rbtree: skip end interval element from gc

rbtree lazy gc on insert might collect an end interval element that has
been just added in this transactions, skip end interval elements that
are not yet active.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/netfilter/nft_set_rbtree.c"
    ],
    "versions": [
      {
        "version": "8284a79136c3",
        "lessThan": "c60d252949ca",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "acaee227cf79",
        "lessThan": "10e9cb393136",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "893cb3c3513c",
        "lessThan": "4cee42fcf54f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "50cbb9d195c1",
        "lessThan": "2bab493a5624",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89a4d1a89751",
        "lessThan": "1296c110c5a0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f718863aca46",
        "lessThan": "b734f7a47aeb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f718863aca46",
        "lessThan": "6eb14441f106",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f718863aca46",
        "lessThan": "60c0c230c6f0",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/netfilter/nft_set_rbtree.c"
    ],
    "versions": [
      {
        "version": "6.5",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.5",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.269",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.210",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.149",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.78",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.17",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.7.5",
        "lessThanOrEqual": "6.7.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.8",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]