Lucene search
LinuxVULNRICHMENT:CVE-2024-27015HistoryMay 01, 2024 - 5:29 a.m.
CVE-2024-27015 netfilter: flowtable: incorrect pppoe tuple
2024-05-0105:29:52
Linux
github.com
2
linux kernel
netfilter
flowtable
pppoe
vulnerability
In the Linux kernel, the following vulnerability has been resolved:
netfilter: flowtable: incorrect pppoe tuple
pppoe traffic reaching ingress path does not match the flowtable entry
because the pppoe header is expected to be at the network header offset.
This bug causes a mismatch in the flow table lookup, so pppoe packets
enter the classical forwarding path.
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/netfilter/nf_flow_table_ip.c"
],
"versions": [
{
"version": "72efd585f714",
"lessThan": "e719b52d0c56",
"status": "affected",
"versionType": "git"
},
{
"version": "72efd585f714",
"lessThan": "f1c3c61701a0",
"status": "affected",
"versionType": "git"
},
{
"version": "72efd585f714",
"lessThan": "4ed82dd368ad",
"status": "affected",
"versionType": "git"
},
{
"version": "72efd585f714",
"lessThan": "e3f078103421",
"status": "affected",
"versionType": "git"
},
{
"version": "72efd585f714",
"lessThan": "6db5dc7b351b",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/netfilter/nf_flow_table_ip.c"
],
"versions": [
{
"version": "5.13",
"status": "affected"
},
{
"version": "0",
"lessThan": "5.13",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.157",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.88",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.29",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8.8",
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]References
git.kernel.org/stable/c/4ed82dd368ad883dc4284292937b882f044e625d
git.kernel.org/stable/c/6db5dc7b351b9569940cd1cf445e237c42cd6d27
git.kernel.org/stable/c/e3f078103421642fcd5f05c5e70777feb10f000d
git.kernel.org/stable/c/e719b52d0c56989b0f3475a03a6d64f182c85b56
git.kernel.org/stable/c/f1c3c61701a0b12f4906152c1626a5de580ea3d2
Related
cbl_mariner
cbl_mariner
CVE-2024-27015 affecting package kernel for versions less than 5.15.158.1-1
2024-06-12 22:23:00
redhatcve
redhatcve
CVE-2024-27015
2024-05-01 19:18:14
cvelist
cvelist
CVE-2024-27015 netfilter: flowtable: incorrect pppoe tuple
2024-05-01 05:29:52
nvd
nvd
CVE-2024-27015
2024-05-01 06:15:20
debiancve
debiancve
CVE-2024-27015
2024-05-01 06:15:20
cve
cve
CVE-2024-27015
2024-05-01 06:15:20
ubuntucve
ubuntucve
CVE-2024-27015
2024-05-01 00:00:00
osv
osv
linux - security update
2024-05-06 00:00:00
debian
debian
[SECURITY] [DSA 5680-1] linux security update
2024-05-06 17:40:02
nessus
nessus
Debian dsa-5680 : affs-modules-6.1.0-21-4kc-malta-di - security update
2024-05-06 00:00:00
Fedora 39 : kernel (2024-bc0db39a14)
2024-05-02 00:00:00
Fedora 38 : kernel (2024-f35f9525d6)
2024-05-02 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5680-1)
2024-05-07 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2024-f35f9525d6)
2024-05-27 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2024-bc0db39a14)
2024-05-27 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: kernel-6.8.8-200.fc39
2024-05-03 01:34:06
[SECURITY] Fedora 40 Update: kernel-6.8.8-300.fc40
2024-05-03 01:49:00
[SECURITY] Fedora 38 Update: kernel-6.8.8-100.fc38
2024-05-03 01:38:45
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for VULNRICHMENT:CVE-2024-27015