cbcvebase.
CVE-2024-0193
published 2024-01-02

CVE-2024-0193: A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed…

medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFT_CHAIN object or NFT_OBJECT object, allowing a local unprivileged user with CAP_NET_ADMIN capability to escalate their privileges on the system.

Affected

79 ranges· showing 25
VendorProductVersion rangeFixed in
debianlinux< linux 6.1.69-1 (bookworm)linux 6.1.69-1 (bookworm)
linuxlinux_kernel>= 0 < 5.10.205-15.10.205-1
linuxlinux_kernel>= 0 < 6.1.69-16.1.69-1
linuxlinux_kernel>= 0 < 6.6.11-16.6.11-1
linuxlinux_kernel>= 0 < 6.6.11-16.6.11-1
linuxlinux_kernel>= 0 < 5.15.0-92.1025.15.0-92.102
linuxlinux_kernel>= 0 < 4.4.0-251.2854.4.0-251.285
linuxlinux_kernel>= 0 < 4.15.0-222.2334.15.0-222.233
linuxlinux_kernel>= 0 < 5.4.0-172.1905.4.0-172.190
linuxlinux_kernel>= 0 < 5.4.0-176.1965.4.0-176.196
linuxlinux_kernel>= 0 < 5.15.0-97.1075.15.0-97.107
linuxlinux_kernel>= 0 < 5.15.0-102.1125.15.0-102.112
linuxlinux_kernel>= 5.10.198 < 5.10.2065.10.206
linuxlinux_kernel>= 5.15.118 < 5.15.1465.15.146
linuxlinux_kernel>= 6.1.35 < 6.1.716.1.71
linuxlinux_kernel>= 6.3.9 < 6.6.106.6.10
redhatcodeready_linux_builder_for_arm64
redhatcodeready_linux_builder_for_arm64_eus
redhatcodeready_linux_builder_for_arm64_eus
redhatcodeready_linux_builder_for_ibm_z_systems
redhatcodeready_linux_builder_for_ibm_z_systems_eus
redhatcodeready_linux_builder_for_ibm_z_systems_eus
redhatcodeready_linux_builder_for_ibm_z_systems_eus
redhatcodeready_linux_builder_for_power_little_endian
redhatcodeready_linux_builder_for_power_little_endian_eus

CVSS provenance

nvdv3.16.7MEDIUMCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
osv8.1HIGH