CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nft_set_rbtree: skip end interval element from gc rbtree lazy gc
on insert might collect an end interval element that has been just added in
this transactions, skip end interval elements that are not yet active.
Author | Note |
---|---|
Priority reason: Reported by Google kCTF |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | linux | < 5.4.0-177.197 | UNKNOWN |
ubuntu | 22.04 | noarch | linux | < 5.15.0-105.115 | UNKNOWN |
ubuntu | 23.10 | noarch | linux | < 6.5.0-28.29 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < 5.4.0-1123.133 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | < 5.15.0-1060.66 | UNKNOWN |
ubuntu | 23.10 | noarch | linux-aws | < 6.5.0-1018.18 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws-5.15 | < 5.15.0-1058.64~20.04.1 | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws-5.4 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws-6.5 | < 6.5.0-1018.18~22.04.1 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure | < 5.4.0-1128.135 | UNKNOWN |
git.kernel.org/linus/60c0c230c6f046da536d3df8b39a20b9a9fd6af0 (6.8-rc4)
git.kernel.org/stable/c/1296c110c5a0b45a8fcf58e7d18bc5da61a565cb
git.kernel.org/stable/c/60c0c230c6f046da536d3df8b39a20b9a9fd6af0
git.kernel.org/stable/c/6eb14441f10602fa1cf691da9d685718b68b78a9
git.kernel.org/stable/c/b734f7a47aeb32a5ba298e4ccc16bb0c52b6dbf7
launchpad.net/bugs/cve/CVE-2024-26581
nvd.nist.gov/vuln/detail/CVE-2024-26581
security-tracker.debian.org/tracker/CVE-2024-26581
ubuntu.com/security/notices/USN-6688-1
ubuntu.com/security/notices/USN-6741-1
ubuntu.com/security/notices/USN-6742-1
ubuntu.com/security/notices/USN-6742-2
ubuntu.com/security/notices/USN-6743-1
ubuntu.com/security/notices/USN-6743-2
ubuntu.com/security/notices/USN-6743-3
www.cve.org/CVERecord?id=CVE-2024-26581