CVE-2024-27019 — Race Condition in Linux
Severity
4.7MEDIUMNVD
EPSS
0.0%
top 99.26%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 1
Latest updateSep 18
Description
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
nft_unregister_obj() can concurrent with __nft_obj_type_get(),
and there is not any protection when iterate over nf_tables_objects
list in __nft_obj_type_get(). Therefore, there is potential data-race
of nf_tables_objects list entry.
Use list_for_each_entry_rcu() to iterate over nf_tables_objects
list in __nft_obj_type_get(), and use rcu_read_lock() in the …
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.0 | Impact: 3.6
Affected Packages3 packages
▶CVEListV5linux/linuxe50092404c1bc7aaeb0a0f4077fa6f07b073a20f — cade34279c2249eafe528564bd2e203e4ff15f88+6
Also affects: Fedora 38, 39, 40
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-7fqw-qhgj-3c8c: In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
nft_unregi↗2024-05-01
OSV▶
CVE-2024-27019: In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() nft_unregist↗2024-05-01
📋Vendor Advisories
21💬Community
1Bugzilla▶
CVE-2024-27019 kernel: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()↗2024-05-01