CVE-2024-27017

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: walk over current view on netlink dump The generation mask can be updated while netlink dump is in progress. The pipapo set backend walk iterator cannot rely on it to infer what view of the datastructure is to be used. Add notation to specify if user wants to read/update the set. Based on patch from Florian Westphal.

Reserved 2024-02-19 | Published 2024-05-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

2a90da8e0dd50f42e577988f4219f4f4cd3616b7 before ff89db14c63a827066446460e39226c0688ef786
affected

45eb6944d0f55102229115de040ef3a48841434a before ce9fef54c5ec9912a0c9a47bac3195cc41b14679
affected

0d836f917520300a8725a5dbdad4406438d0cead before 52735a010f37580b3a569a996f878fdd87425650
affected

2b84e215f87443c74ac0aa7f76bb172d43a87033 before f24d8abc2bb8cbf31ec713336e402eafa8f42f60
affected

2b84e215f87443c74ac0aa7f76bb172d43a87033 before 721715655c72640567e8742567520c99801148ed
affected

2b84e215f87443c74ac0aa7f76bb172d43a87033 before 29b359cf6d95fd60730533f7f10464e95bd17c73
affected

f661383b5f1aaac3fe121b91e04332944bc90193
affected

Default status
affected

6.4
affected

Any version before 6.4
unaffected

5.10.227
unaffected

5.15.168
unaffected

6.1.112
unaffected

6.6.53
unaffected

6.8.8
unaffected

6.9
unaffected

References

git.kernel.org/...c/ff89db14c63a827066446460e39226c0688ef786

git.kernel.org/...c/ce9fef54c5ec9912a0c9a47bac3195cc41b14679

git.kernel.org/...c/52735a010f37580b3a569a996f878fdd87425650

git.kernel.org/...c/f24d8abc2bb8cbf31ec713336e402eafa8f42f60

git.kernel.org/...c/721715655c72640567e8742567520c99801148ed

git.kernel.org/...c/29b359cf6d95fd60730533f7f10464e95bd17c73

cve.org (CVE-2024-27017)

nvd.nist.gov (CVE-2024-27017)

Download JSON