CVE-2024-26581

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_set_rbtree: skip end interval element from gc

rbtree lazy gc on insert might collect an end interval element that has been just added in this transactions, skip end interval elements that are not yet active.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8284a79136c384059e85e278da2210b809730287 < c60d252949caf9aba537525195edae6bbabc35ebaffected
LinuxLinuxacaee227cf79c45a5d2d49c3e9a66333a462802c < 10e9cb39313627f2eae4cd70c4b742074e998fd8affected
LinuxLinux893cb3c3513cf661a0ff45fe0cfa83fe27131f76 < 4cee42fcf54fec46b344681e7cc4f234bb22f85aaffected
LinuxLinux50cbb9d195c197af671869c8cadce3bd483735a0 < 2bab493a5624444ec6e648ad0d55a362bcb4c003affected
LinuxLinux89a4d1a89751a0fbd520e64091873e19cc0979e8 < 1296c110c5a0b45a8fcf58e7d18bc5da61a565cbaffected
LinuxLinuxf718863aca469a109895cb855e6b81fff4827d71 < b734f7a47aeb32a5ba298e4ccc16bb0c52b6dbf7affected
LinuxLinuxf718863aca469a109895cb855e6b81fff4827d71 < 6eb14441f10602fa1cf691da9d685718b68b78a9affected
LinuxLinuxf718863aca469a109895cb855e6b81fff4827d71 < 60c0c230c6f046da536d3df8b39a20b9a9fd6af0affected
LinuxLinuxcd66733932399475fe933cb3ec03e687ed401462affected
LinuxLinux5.4.262 < 5.4.269affected
LinuxLinux5.10.190 < 5.10.210affected
LinuxLinux5.15.124 < 5.15.149affected
LinuxLinux6.1.43 < 6.1.78affected
LinuxLinux6.4.8 < 6.5affected
LinuxLinux6.5affected
LinuxLinux0 < 6.5unaffected
LinuxLinux5.4.269 <= 5.4.*unaffected
LinuxLinux5.10.210 <= 5.10.*unaffected
LinuxLinux5.15.149 <= 5.15.*unaffected
LinuxLinux6.1.78 <= 6.1.*unaffected
LinuxLinux6.6.17 <= 6.6.*unaffected
LinuxLinux6.7.5 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References