CVE-2024-26809Use After Free in Linux

CWE-416Use After Free48 documents7 sources
Severity
5.5MEDIUMNVD
OSV7.5OSV7.0OSV6.5
EPSS
0.0%
top 97.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedApr 4
Latest updateJul 26

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: release elements in clone only from destroy path Clone already always provides a current view of the lookup table, use it to destroy the set, otherwise it is possible to destroy elements twice. This fix requires: 212ed75dc5fb ("netfilter: nf_tables: integrate pipapo into commit protocol") which came after: 9827a0e6e23b ("netfilter: nft_set_pipapo: release elements in clone from abort path").

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

NVDlinux/linux_kernel5.10.1305.10.214+5
Debianlinux/linux_kernel< 5.10.216-1+3
Ubuntulinux/linux_kernel< 5.15.0-112.122+1
CVEListV5linux/linux4a6430b99f67842617c7208ca55a411e903ba03ab36b83297ff4910dfc8705402c8abffd4bbf8144+8
debiandebian/linux< linux 6.1.85-1 (bookworm)

Also affects: Debian Linux 10.0

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

23
OSV
linux-raspi vulnerabilities2024-07-26
OSV
linux-hwe-6.5 vulnerabilities2024-07-17
OSV
linux-ibm-5.15 vulnerabilities2024-07-10
OSV
linux-lowlatency, linux-lowlatency-hwe-6.5 vulnerabilities2024-07-04
OSV
linux-hwe-5.15 vulnerabilities2024-07-04

📋Vendor Advisories

23
Ubuntu
Linux kernel vulnerabilities2024-07-26
Ubuntu
Linux kernel vulnerabilities2024-07-17
Ubuntu
Linux kernel (IBM) vulnerabilities2024-07-10
Ubuntu
Linux kernel (Oracle) vulnerabilities2024-07-04
Ubuntu
Linux kernel (Azure) vulnerabilities2024-07-04

💬Community

1
Bugzilla
CVE-2024-26809 kernel: netfilter: nft_set_pipapo: release elements in clone only from destroy path2024-04-04