CVE-2024-27019

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()

nft_unregister_obj() can concurrent with __nft_obj_type_get(), and there is not any protection when iterate over nf_tables_objects list in __nft_obj_type_get(). Therefore, there is potential data-race of nf_tables_objects list entry.

Use list_for_each_entry_rcu() to iterate over nf_tables_objects list in __nft_obj_type_get(), and use rcu_read_lock() in the caller nft_obj_type_get() to protect the entire type query process.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe50092404c1bc7aaeb0a0f4077fa6f07b073a20f < cade34279c2249eafe528564bd2e203e4ff15f88affected
LinuxLinuxe50092404c1bc7aaeb0a0f4077fa6f07b073a20f < 379bf7257bc5f2a1b1ca8514e08a871b7bf6d920affected
LinuxLinuxe50092404c1bc7aaeb0a0f4077fa6f07b073a20f < df7c0fb8c2b9f9cac65659332581b19682a71349affected
LinuxLinuxe50092404c1bc7aaeb0a0f4077fa6f07b073a20f < ad333578f736d56920e090d7db1f8dec891d815eaffected
LinuxLinuxe50092404c1bc7aaeb0a0f4077fa6f07b073a20f < 4ca946b19caf655a08d5e2266d4d5526025ebb73affected
LinuxLinuxe50092404c1bc7aaeb0a0f4077fa6f07b073a20f < d78d867dcea69c328db30df665be5be7d0148484affected
LinuxLinux4.10affected
LinuxLinux0 < 4.10unaffected
LinuxLinux5.10.219 <= 5.10.*unaffected
LinuxLinux5.15.157 <= 5.15.*unaffected
LinuxLinux6.1.88 <= 6.1.*unaffected
LinuxLinux6.6.29 <= 6.6.*unaffected
LinuxLinux6.8.8 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References