CVE-2024-26581

Published Feb 20, 2024

Last updated 20 days ago

Overview

AI description

Generated using AI and has not been reviewed by Intruder. May contain errors.

CVE-2024-26581 is a vulnerability found in the Linux kernel's netfilter component, specifically within the nft_set_rbtree function. The issue stems from the garbage collection process of the rbtree, where an end interval element could be collected prematurely during insertion. This vulnerability has been addressed by modifying the garbage collection process to skip end interval elements that are not yet active. Versions of the Linux kernel prior to 6.8-rc4 are known to be affected, including versions up to 6.1.77, 6.6.16, and 6.7.4. A proof-of-concept exploit was publicly released on September 6, 2024, increasing the likelihood of exploitation attempts. Affected systems are advised to update their kernel to version 6.8-rc4 or later to mitigate this vulnerability.

Description: In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip end interval element from gc rbtree lazy gc on insert might collect an end interval element that has been just added in this transactions, skip end interval elements that are not yet active.
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-416

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8108978F-ACC3-4DC3-AEC9-E893E980D84A",
            "versionEndExcluding": "5.4.269",
            "versionStartIncluding": "5.4.262"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A162229-E85C-4150-B585-B402CAB87544",
            "versionEndExcluding": "5.10.210",
            "versionStartIncluding": "5.10.190"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9396F7D9-F665-4C88-A7EF-4C6AC603DC2F",
            "versionEndExcluding": "5.15.149",
            "versionStartIncluding": "5.15.124"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C967F956-2F5A-47ED-BA7B-6868144DD907",
            "versionEndExcluding": "6.1.78",
            "versionStartIncluding": "6.1.43"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78C64F80-8402-4CC8-ABFA-E775538A6F24",
            "versionEndExcluding": "6.6.17",
            "versionStartIncluding": "6.4.8"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01925741-2C95-47C1-A7EA-3DC2BB0012D3",
            "versionEndExcluding": "6.7.5",
            "versionStartIncluding": "6.7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]