Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2024-26910
HistoryApr 17, 2024 - 8:52 p.m.

CVE-2024-26910

2024-04-1720:52:38
redhat.com
access.redhat.com
11
linux kernel
netfilter
ipset
swap operation
performance regression
race condition
patch
synchronize_rcu()
destroy function
call_rcu()
garbage collector
netlink

CVSS3

4.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.2

Confidence

High

EPSS

0

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix performance regression in swap operation The patch “netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test”, commit 28628fa9 fixes a race condition. But the synchronize_rcu() added to the swap function unnecessarily slows it down: it can safely be moved to destroy and use call_rcu() instead. Eric Dumazet pointed out that simply calling the destroy functions as rcu callback does not work: sets with timeout use garbage collectors which need cancelling at destroy which can wait. Therefore the destroy functions are split into two: cancelling garbage collectors safely at executing the command received by netlink and moving the remaining part only into the rcu callback.

Related

vulnrichment 1
cvelist 1
debiancve 1
cve 1
ubuntucve 1
nvd 1
redos 1
nessus 20
ubuntu 12
osv 14
openvas 14
debian 1
vulnrichment
vulnrichment
CVE-2024-26910 netfilter: ipset: fix performance regression in swap operation
2024-04-17 15:59:21
cvelist
cvelist
CVE-2024-26910 netfilter: ipset: fix performance regression in swap operation
2024-04-17 15:59:21
debiancve
debiancve
CVE-2024-26910
2024-04-17 16:15:07
cve
cve
CVE-2024-26910
2024-04-17 16:15:07
ubuntucve
ubuntucve
CVE-2024-26910
2024-04-17 00:00:00
nvd
nvd
CVE-2024-26910
2024-04-17 16:15:07
redos
redos
ROS-20240820-09
2024-08-20 00:00:00
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.4-2024-062)
2024-04-01 00:00:00
Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-549)
2024-03-06 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2024-039)
2024-03-06 00:00:00
ubuntu
ubuntu
Linux kernel (BlueField) vulnerabilities
2024-05-14 00:00:00
Linux kernel vulnerabilities
2024-05-07 00:00:00
Linux kernel vulnerabilities
2024-05-07 00:00:00
osv
osv
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities
2024-05-07 19:36:29
linux-bluefield vulnerabilities
2024-05-14 09:00:08
linux-hwe-5.15, linux-raspi vulnerabilities
2024-05-15 15:15:08
openvas
openvas
Ubuntu: Security Advisory (USN-6767-1)
2024-05-08 00:00:00
Ubuntu: Security Advisory (USN-6767-2)
2024-05-15 00:00:00
Ubuntu: Security Advisory (USN-6766-1)
2024-05-08 00:00:00
debian
debian
[SECURITY] [DSA 5681-1] linux security update
2024-05-06 18:31:39

CVSS3

4.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.2

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for RH:CVE-2024-26910
vulnrichment1cvelist1debiancve1cve1ubuntucve1nvd1redos1nessus20ubuntu12osv14openvas14debian1