summaryrefslogtreecommitdiffstats
path: root/active/CVE-2024-26925
blob: da0f10f3ac86ef9ee79f54d20c022cd4ae2e96ff (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

Description: netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path
References:
 https://www.openwall.com/lists/oss-security/2024/05/07/6
Notes:
 carnil> Introduced in 720344340fb9 ("netfilter: nf_tables: GC transaction race with
 carnil> abort path"). Vulnerable versions: 5.4.262 5.10.198 5.15.134 6.1.56 6.4.13 6.5.
Bugs:
upstream: released (6.9-rc3) [0d459e2ffb541841714839e8228b845458ed3b27]
6.8-upstream-stable: released (6.8.5) [a34ba4bdeec0c3b629160497594908dc820110f1]
6.6-upstream-stable: released (6.6.26) [8038ee3c3e5b59bcd78467686db5270c68544e30]
6.1-upstream-stable: released (6.1.86) [8d3a58af50e46167b6f1db47adadad03c0045dae]
5.10-upstream-stable: released (5.10.215) [2cee2ff7f8cce12a63a0a23ffe27f08d99541494]
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: needed
6.1-bookworm-security: released (6.1.90-1)
5.10-bullseye-security: released (5.10.216-1)
4.19-buster-security: N/A "Vulnerable code not present"

© 2014-2024 Faster IT GmbH | imprint | privacy policy