A use-after-free vulnerability exists in the Linux kernel's netfilter: nf_tables component

The Linux kernel is vulnerable to memory corruption due to improper error handling within the netfilter functionality. A local attacker could exploit this vulnerability in order to elevate their privileges. A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be...

CVE-2024-47685

In the Linux kernel, CVE-2024-47685 patches nf_reject_ipv6: nf_reject_ip6_tcphdr_put() could push garbage into the four reserved TCP bits (th->res1) per KMSAN. The fix clears the entire TCP header using skb_put_zero(), aligning with nf_reject_ip_tcphdr_put(). Connected Astra Linux bulletin rep...

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2024-12378)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12378 advisory. - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36466544 CVE-2024-1086 Tenable has extracted the preceding description blo...

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

SUSE SLES12 Security Update : kernel (Live Patch 52 for SLE 12 SP5) (SUSE-SU-2024:1401-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2024:1401-1 advisory. - A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The...

CVE-2024-26834 netfilter: nft_flow_offload: release dst in case direct xmit path is used

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftflowoffload: release dst in case direct xmit path is used Direct xmit does not use it since it calls devqueuexmit to send packets, hence it calls dstrelease. kmemleak reports: unreferenced object 0xffff88814f440900...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12256)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12256 advisory. 5.4.17-2136.329.3.2 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36465920 CVE-2024-1086 Tenable has extracted the...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2024-12259)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12259 advisory. 5.4.17-2136.329.3.2.el7 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36465920 CVE-2024-1086 Tenable has extracted the...

Ubuntu 23.10 : Linux kernel (ARM laptop) vulnerabilities (USN-6707-2)

The remote Ubuntu 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6707-2 advisory. Lonial Con discovered that the netfilter subsystem in the Linux kernel did not properly handle element deactivation in certain cases, leading to a...

Amazon Linux 2 : kernel (ALAS-2024-2453)

The version of kernel installed on the remote host is prior to 4.14.336-256.559. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2453 advisory. A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local...

CVE-2024-1086

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

CVE-2024-1086

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The nftverdictinit function allows positive values as drop error within the hook verdict, and hence the nfhookslow function can cause a double free...

CVE-2024-1086 Use-after-free in Linux kernel's netfilter: nf_tables component

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The nftverdictinit function allows positive values as drop error within the hook verdict, and hence the nfhookslow function can cause a double free...

CVE-2024-1086 Use-after-free in Linux kernel's netfilter: nf_tables component

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The nftverdictinit function allows positive values as drop error within the hook verdict, and hence the nfhookslow function can cause a double free...