Astra Linux – Vulnerability in Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nfrejectipv6: fixed a potential crash in nfsendreset6 I received a report from syzbot regarding a crash in nfsendreset6 without any detailed reproduction steps. I believe the issue lies in dev-hardheaderlen being se...

The vulnerability of the nf_send_reset6() function in the net/ipv6/netfilter/nf_reject_ipv6.c component of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the nfsendreset6 function in the net/ipv6/netfilter/nfrejectipv6.c component of the Linux kernel is related to errors during resource release. Exploiting this vulnerability could allow an attacker to cause a service failure...

netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()

...

SUSE CVE-2024-50256

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix potential crash in nfsendreset6 I got a syzbot report without a repro 1 crashing in nfsendreset6 I think the issue is that dev-hardheaderlen is zero, and we attempt later to push an Ethernet header. U...

AZL-53250 CVE-2024-50256 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix potential crash in nfsendreset6 I got a syzbot report without a repro 1 crashing in nfsendreset6 I think the issue is that dev-hardheaderlen is zero, and we attempt later to push an Ethernet header. U...

DEBIAN-CVE-2024-50256

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix potential crash in nfsendreset6 I got a syzbot report without a repro 1 crashing in nfsendreset6 I think the issue is that dev-hardheaderlen is zero, and we attempt later to push an Ethernet header. U...

AZL-53313 CVE-2024-50256 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix potential crash in nfsendreset6 I got a syzbot report without a repro 1 crashing in nfsendreset6 I think the issue is that dev-hardheaderlen is zero, and we attempt later to push an Ethernet header. U...

CVE-2024-50256

CVE-2024-50256 affects the Linux kernel netfilter path nf_reject_ipv6. The issue arises in nf_send_reset6() when a zero or insufficient hardware header length (dev->hard_header_len) leads to attempting to push an Ethernet header, crash, and kernel BUG in skbuff.c. The provided trace shows skb_...

CVE-2024-50256 netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix potential crash in nfsendreset6 I got a syzbot report without a repro 1 crashing in nfsendreset6 I think the issue is that dev-hardheaderlen is zero, and we attempt later to push an Ethernet header. U...

CVE-2024-47685

In the Linux kernel, CVE-2024-47685 patches nf_reject_ipv6: nf_reject_ip6_tcphdr_put() could push garbage into the four reserved TCP bits (th->res1) per KMSAN. The fix clears the entire TCP header using skb_put_zero(), aligning with nf_reject_ip_tcphdr_put(). Connected Astra Linux bulletin rep...

CVE-2024-47685 netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix nfrejectip6tcphdrput syzbot reported that nfrejectip6tcphdrput was possibly sending garbage on the four reserved tcp bits th-res1 Use skbputzero to clear the whole TCP header, as done in...