Astra Linux – Vulnerability in Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nfrejectipv6: fixed a potential crash in nfsendreset6 I received a report from syzbot regarding a crash in nfsendreset6 without any detailed reproduction steps. I believe the issue lies in dev-hardheaderlen being se...

AZL-53250 CVE-2024-50256 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix potential crash in nfsendreset6 I got a syzbot report without a repro 1 crashing in nfsendreset6 I think the issue is that dev-hardheaderlen is zero, and we attempt later to push an Ethernet header. U...

AZL-53313 CVE-2024-50256 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix potential crash in nfsendreset6 I got a syzbot report without a repro 1 crashing in nfsendreset6 I think the issue is that dev-hardheaderlen is zero, and we attempt later to push an Ethernet header. U...

CVE-2024-50256

CVE-2024-50256 affects the Linux kernel netfilter path nf_reject_ipv6. The issue arises in nf_send_reset6() when a zero or insufficient hardware header length (dev->hard_header_len) leads to attempting to push an Ethernet header, crash, and kernel BUG in skbuff.c. The provided trace shows skb_...