CVE-2024-54031Sensitive Information Exposure in Linux

CWE-200Sensitive Information Exposure5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 99.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedJan 15

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext Access to genmask field in struct nft_set_ext results in unaligned atomic read: [ 72.130109] Unable to handle kernel paging request at virtual address ffff0000c2bb708c [ 72.131036] Mem abort info: [ 72.131213] ESR = 0x0000000096000021 [ 72.131446] EC = 0x25: DABT (current EL), IL = 32 bits [ 72.132209] SET = 0, FnV = 0 [ 72.133216] EA = 0, S1PTW = 0 [ 72.134

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

NVDlinux/linux_kernel5.4.2875.4.289+6
Debianlinux/linux_kernel< 5.10.234-1+3
CVEListV5linux/linux98d62cf0e26305dd6a1932a4054004290f4194bb352f8eaaabd008f09d1e176194edc261a7304084+12
debiandebian/linux< linux 6.1.124-1 (bookworm)
debiandebian/linux-6.1< linux 6.1.124-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2024-54031: In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext Access to gen2025-01-15
GHSA
GHSA-3cpc-x5c2-65qq: In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext Access to g2025-01-15

📋Vendor Advisories

2
Red Hat
kernel: netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext2025-01-15
Debian
CVE-2024-54031: linux - In the Linux kernel, the following vulnerability has been resolved: netfilter: ...2024