CVE-2024-26581
netfilter: nft_set_rbtree: skip end interval element from gc
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nft_set_rbtree: skip end interval element from gc
rbtree lazy gc on insert might collect an end interval element that has
been just added in this transactions, skip end interval elements that
are not yet active.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Linux · LinuxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://git.kernel.org/stable/c/10e9cb39313627f2eae4cd70c4b742074e998fd8https://git.kernel.org/stable/c/1296c110c5a0b45a8fcf58e7d18bc5da61a565cbhttps://git.kernel.org/stable/c/2bab493a5624444ec6e648ad0d55a362bcb4c003https://git.kernel.org/stable/c/4cee42fcf54fec46b344681e7cc4f234bb22f85ahttps://git.kernel.org/stable/c/60c0c230c6f046da536d3df8b39a20b9a9fd6af0https://git.kernel.org/stable/c/6eb14441f10602fa1cf691da9d685718b68b78a9https://git.kernel.org/stable/c/b734f7a47aeb32a5ba298e4ccc16bb0c52b6dbf7https://git.kernel.org/stable/c/c60d252949caf9aba537525195edae6bbabc35ebhttps://lists.debian.org/debian-lts-announce/2024/06/msg00017.html