3 matches found
kernel: netfilter: nf_tables: prefer nft_chain_validate
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection because a cycle will result in a call stack overflow ctx-level = NFTJUMPSTACKSIZE. It also follows maps via -validate callback in...
Vulnerabilities of the functions nft_lookup_init(), nf_tables_fill_setelem(), and nft_validate_register_store() in the Linux operating system, allowing a hacker to cause a service failure
The vulnerabilities of the functions nftlookupinit, nftablesfillsetelem, and nftvalidateregisterstore in the Linux operating system are related to type mixing errors. Exploiting these vulnerabilities can allow an attacker to cause service failures...
CVE-2024-42070
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fully validate NFTDATAVALUE on store to data registers register store validation for NFTDATAVALUE is conditional, however, the datatype is always either NFTDATAVALUE or NFTDATAVERDICT. This only requires a ne...