Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentLinuxVULNRICHMENT:CVE-2024-27395
HistoryMay 09, 2024 - 4:37 p.m.

CVE-2024-27395 net: openvswitch: Fix Use-After-Free in ovs_ct_exit

2024-05-0916:37:15
Linux
github.com
1
linux kernel
net
openvswitch
fix use-after-free
ovs_ct_exit
vulnerability
kfree_rcu
rcu grace period

AI Score

6.8

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

In the Linux kernel, the following vulnerability has been resolved:

net: openvswitch: Fix Use-After-Free in ovs_ct_exit

Since kfree_rcu, which is called in the hlist_for_each_entry_rcu traversal
of ovs_ct_limit_exit, is not part of the RCU read critical section, it
is possible that the RCU grace period will pass during the traversal and
the key will be free.

To prevent this, it should be changed to hlist_for_each_entry_safe.

Related

ubuntucve 1
nvd 1
cbl_mariner 1
debiancve 1
osv 26
redhatcve 1
cvelist 1
cve 1
nessus 46
photon 2
openvas 32
ubuntu 16
rocky 3
redhat 6
oraclelinux 1
mageia 2
ubuntucve
ubuntucve
CVE-2024-27395
2024-05-14 00:00:00
nvd
nvd
CVE-2024-27395
2024-05-14 15:12:27
cbl_mariner
cbl_mariner
CVE-2024-27395 affecting package hyperv-daemons for versions less than 6.6.35.1-1
2024-07-23 02:21:02
debiancve
debiancve
CVE-2024-27395
2024-05-14 15:12:27
osv
osv
CVE-2024-27395
2024-05-14 15:12:00
linux-aws-5.15 vulnerabilities
2024-07-23 09:43:14
Important: kernel-rt security update
2024-08-08 00:00:00
redhatcve
redhatcve
CVE-2024-27395
2024-05-14 23:56:25
cvelist
cvelist
CVE-2024-27395 net: openvswitch: Fix Use-After-Free in ovs_ct_exit
2024-05-09 16:37:15
cve
cve
CVE-2024-27395
2024-05-14 15:12:27
nessus
nessus
Photon OS 3.0: Linux PHSA-2024-3.0-0760
2024-07-24 00:00:00
Photon OS 5.0: Linux PHSA-2024-5.0-0274
2024-07-24 00:00:00
Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-695)
2024-08-06 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2024-3.0-0760
2024-05-23 00:00:00
Important Photon OS Security Update - PHSA-2024-5.0-0274
2024-05-18 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2352)
2024-09-10 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1887)
2024-07-16 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2140)
2024-08-20 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-07-19 00:00:00
Linux kernel vulnerabilities
2024-07-17 00:00:00
Linux kernel vulnerabilities
2024-07-17 00:00:00
rocky
rocky
kernel-rt security update
2024-08-21 14:52:36
kernel security update
2024-08-21 14:52:19
kernel security update
2024-09-17 00:57:33
redhat
redhat
(RHSA-2024:5102) Important: kernel-rt security update
2024-08-08 04:34:36
(RHSA-2024:5432) Moderate: OpenShift Container Platform 4.14.35 security update
2024-08-21 21:38:55
(RHSA-2024:5438) Moderate: OpenShift Container Platform 4.15.28 packages and security update
2024-08-21 03:33:53
oraclelinux
oraclelinux
kernel security update
2024-08-08 00:00:00
mageia
mageia
Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities
2024-07-13 10:54:44
Updated kernel-linus packages fix security vulnerabilities
2024-07-14 08:23:38

AI Score

6.8

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-27395
ubuntucve1nvd1cbl_mariner1debiancve1osv26redhatcve1cvelist1cve1nessus46photon2openvas32ubuntu16rocky3redhat6oraclelinux1mageia2