Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2024-1085
HistoryJan 31, 2024 - 12:00 a.m.

CVE-2024-1085

2024-01-3100:00:00
ubuntu.com
ubuntu.com
61
linux kernel
netfilter
nf_tables
local privilege escalation
double free
bug
vulnerability
commit
bugzilla
suse
redhat
priority
filter value
unprivileged
rodrigo-zaiden
google kctf

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

A use-after-free vulnerability in the Linux kernel’s netfilter: nf_tables
component can be exploited to achieve local privilege escalation. The
nft_setelem_catchall_deactivate() function checks whether the catch-all set
element is active in the current generation instead of the next generation
before freeing it, but only flags it inactive in the next generation,
making it possible to free the element multiple times, leading to a double
free vulnerability. We recommend upgrading past commit
b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7.

Bugs

Notes

Author Note
Priority reason: By passing a certain filter value to nf_tables, an unprivileged local attacker can elevate privileges.
rodrigo-zaiden from Google kCTF.
OSVersionArchitecturePackageVersionFilename
ubuntu22.04noarchlinux< 5.15.0-101.111UNKNOWN
ubuntu23.10noarchlinux< 6.5.0-26.26UNKNOWN
ubuntu24.04noarchlinux< anyUNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1056.61UNKNOWN
ubuntu23.10noarchlinux-aws< 6.5.0-1016.16UNKNOWN
ubuntu24.04noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1056.61~20.04.1UNKNOWN
ubuntu22.04noarchlinux-aws-6.5< 6.5.0-1016.16~22.04.1UNKNOWN
ubuntu22.04noarchlinux-azure< 5.15.0-1059.67UNKNOWN
ubuntu23.10noarchlinux-azure< 6.5.0-1017.17UNKNOWN
Rows per page:
1-10 of 551

Related

nessus 37
oraclelinux 2
prion 2
redhatcve 1
cvelist 1
cve 2
debiancve 1
osv 10
openvas 14
ubuntu 11
photon 1
redhat 6
nessus
nessus
Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-537)
2024-02-20 00:00:00
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12208)
2024-03-12 00:00:00
SUSE SLES15 Security Update : kernel (Live Patch 22 for SLE 15 SP4) (SUSE-SU-2024:1298-1)
2024-04-16 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2024-03-11 00:00:00
kernel security, bug fix, and enhancement update
2024-05-02 00:00:00
prion
prion
Double free
2024-01-31 13:15:00
Open redirect
2024-01-31 13:15:00
redhatcve
redhatcve
CVE-2024-1085
2024-01-31 19:26:25
cvelist
cvelist
CVE-2024-1085 Use-after-free in Linux kernel's netfilter: nf_tables component
2024-01-31 12:14:32
cve
cve
CVE-2024-1085
2024-01-31 13:15:10
CVE-2024-1087
2024-01-31 13:15:11
debiancve
debiancve
CVE-2024-1085
2024-01-31 13:15:10
osv
osv
linux-laptop vulnerabilities
2024-03-21 13:12:53
linux-aws, linux-aws-6.5 vulnerabilities
2024-03-25 23:07:30
linux-azure-6.5 vulnerabilities
2024-03-28 20:44:52
openvas
openvas
Ubuntu: Security Advisory (USN-6707-2)
2024-03-22 00:00:00
Ubuntu: Security Advisory (USN-6707-3)
2024-03-26 00:00:00
Ubuntu: Security Advisory (USN-6707-4)
2024-03-29 00:00:00
ubuntu
ubuntu
Linux kernel (AWS) vulnerabilities
2024-03-25 00:00:00
Linux kernel (Azure) vulnerabilities
2024-03-28 00:00:00
Linux kernel vulnerabilities
2024-03-20 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0198
2024-02-06 00:00:00
redhat
redhat
(RHSA-2024:1019) Important: kernel-rt security update
2024-02-28 12:25:09
(RHSA-2024:1018) Important: kernel security update
2024-02-28 12:25:01
(RHSA-2024:1052) Critical: OpenShift Container Platform 4.12.51 bug fix and security update
2024-03-06 00:34:28

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for UB:CVE-2024-1085
nessus37oraclelinux2prion2redhatcve1cvelist1cve2debiancve1osv10openvas14ubuntu11photon1redhat6