CVE-2024-27015

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: flowtable: incorrect pppoe tuple

pppoe traffic reaching ingress path does not match the flowtable entry because the pppoe header is expected to be at the network header offset. This bug causes a mismatch in the flow table lookup, so pppoe packets enter the classical forwarding path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux72efd585f7144a047f7da63864284764596ccad9 < e719b52d0c56989b0f3475a03a6d64f182c85b56affected
LinuxLinux72efd585f7144a047f7da63864284764596ccad9 < f1c3c61701a0b12f4906152c1626a5de580ea3d2affected
LinuxLinux72efd585f7144a047f7da63864284764596ccad9 < 4ed82dd368ad883dc4284292937b882f044e625daffected
LinuxLinux72efd585f7144a047f7da63864284764596ccad9 < e3f078103421642fcd5f05c5e70777feb10f000daffected
LinuxLinux72efd585f7144a047f7da63864284764596ccad9 < 6db5dc7b351b9569940cd1cf445e237c42cd6d27affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.15.157 <= 5.15.*unaffected
LinuxLinux6.1.88 <= 6.1.*unaffected
LinuxLinux6.6.29 <= 6.6.*unaffected
LinuxLinux6.8.8 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References