Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2024-26950

HistoryMay 01, 2024 - 6:15 a.m.

CVE-2024-26950

2024-05-0106:15:11

Debian Security Bug Tracker

security-tracker.debian.org

linux kernel

wireguard

netlink

vulnerability

performance

defense in depth

freed peers

unix

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.2%

JSON

In the Linux kernel, the following vulnerability has been resolved: wireguard: netlink: access device through ctx instead of peer The previous commit fixed a bug that led to a NULL peer->device being dereferenced. It’s actually easier and faster performance-wise to instead get the device from ctx->wg. This semantically makes more sense too, since ctx->wg->peer_allowedips.seq is compared with ctx->allowedips_seq, basing them both in ctx. This also acts as a defence in depth provision against freed peers.

OSVersionArchitecturePackageVersionFilename
Debian12alllinux< 6.1.85-1linux_6.1.85-1_all.deb
Debian11alllinux< 5.10.216-1linux_5.10.216-1_all.deb
Debian999alllinux< 6.7.12-1linux_6.7.12-1_all.deb
Debian13alllinux< 6.7.12-1linux_6.7.12-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	< 6.1.85-1	linux_6.1.85-1_all.deb
Debian	11	all	linux	< 5.10.216-1	linux_5.10.216-1_all.deb
Debian	999	all	linux	< 6.7.12-1	linux_6.7.12-1_all.deb
Debian	13	all	linux	< 6.7.12-1	linux_6.7.12-1_all.deb