Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-26739HistoryApr 03, 2024 - 5:15 p.m.
CVE-2024-26739
2024-04-0317:15:51
Debian Security Bug Tracker
security-tracker.debian.org
11
linux kernel
net/sched
act_mirred
vulnerability
In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mirred: don’t override retval if we already lost the skb If we’re redirecting the skb, and haven’t called tcf_mirred_forward(), yet, we need to tell the core to drop the skb by setting the retcode to SHOT. If we have called tcf_mirred_forward(), however, the skb is out of our hands and returning SHOT will lead to UaF. Move the retval override to the error path which actually need it.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | <= 6.1.106-3 | linux_6.1.106-3_all.deb |
| Debian | 11 | all | linux | <= 5.10.223-1 | linux_5.10.223-1_all.deb |
| Debian | 999 | all | linux | < 6.7.7-1 | linux_6.7.7-1_all.deb |
| Debian | 13 | all | linux | < 6.7.7-1 | linux_6.7.7-1_all.deb |
Related
redhatcve
redhatcve
CVE-2024-26739
2024-04-04 01:52:47
ubuntucve
ubuntucve
CVE-2024-26739
2024-04-03 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2024-26739
2024-04-03 17:15:51
vulnrichment
vulnrichment
cve
cve
CVE-2024-26739
2024-04-03 17:15:51
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1650-1)
2024-05-16 00:00:00
RHEL 9 : kernel (RHSA-2024:4823)
2024-07-24 00:00:00
RHEL 9 : kernel-rt (RHSA-2024:4831)
2024-07-24 00:00:00
redhat
redhat
(RHSA-2024:4823) Important: kernel security update
2024-07-24 12:40:38
(RHSA-2024:4831) Important: kernel-rt security update
2024-07-24 12:51:56
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1642-1)
2024-05-24 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1647-1)
2024-05-24 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2140)
2024-08-20 00:00:00
osv
osv
Security update for the Linux Kernel
2024-08-20 07:15:53