CVE-2024-27017
Last modified
CVE-2024-27017 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: walk over current view on netlink dump The generation mask can be updated while netlink dump is in progress. The pipapo set backend walk iterator cannot rely on it to infer what view of the datastructure is to be used. Add notation to specify if user wants to read/update the set. Based on patch from Florian Westphal.. EPSS estimates a 0.28% chance of exploitation in the next 30 days.
Description
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: walk over current view on netlink dump The generation mask can be updated while netlink dump is in progress. The pipapo set backend walk iterator cannot rely on it to infer what view of the datastructure is to be used. Add notation to specify if user wants to read/update the set. Based on patch from Florian Westphal.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Linux | Linux Kernel | >= 6.4, < 6.8.8 | — |
| Linux | Linux Kernel | 6.9 | Rc1 |
| Fedoraproject | Fedora | 38 | — |
| Fedoraproject | Fedora | 39 | — |
| Fedoraproject | Fedora | 40 | — |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2024-27017?
How severe is CVE-2024-27017?
How do I fix CVE-2024-27017?
Are you affected by CVE-2024-27017?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST