CVE-2024-35898

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get()

nft_unregister_flowtable_type() within nf_flow_inet_module_exit() can concurrent with __nft_flowtable_type_get() within nf_tables_newflowtable(). And thhere is not any protection when iterate over nf_tables_flowtables list in __nft_flowtable_type_get(). Therefore, there is pertential data-race of nf_tables_flowtables list entry.

Use list_for_each_entry_rcu() to iterate over nf_tables_flowtables list in __nft_flowtable_type_get(), and use rcu_read_lock() in the caller nft_flowtable_type_get() to protect the entire type query process.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < 69d1fe14a680042ec913f22196b58e2c8ff1b007affected
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < a347bc8e6251eaee4b619da28020641eb5b0dd77affected
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < 940d41caa71f0d3a52df2fde5fada524a993e331affected
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < 2485bcfe05ee3cf9ca8923a94fa2e456924c79c8affected
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < 9b5b7708ec2be21dd7ef8ca0e3abe4ae9f3b083baffected
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < 8b891153b2e4dc0ca9d9dab8f619d49c740813dfaffected
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < e684b1674fd1ca4361812a491242ae871d6b2859affected
LinuxLinux3b49e2e94e6ebb8b23d0955d9e898254455734f8 < 24225011d81b471acc0e1e315b7d9905459a6304affected
LinuxLinux4.16affected
LinuxLinux0 < 4.16unaffected
LinuxLinux4.19.312 <= 4.19.*unaffected
LinuxLinux5.4.274 <= 5.4.*unaffected
LinuxLinux5.10.215 <= 5.10.*unaffected
LinuxLinux5.15.154 <= 5.15.*unaffected
LinuxLinux6.1.85 <= 6.1.*unaffected
LinuxLinux6.6.26 <= 6.6.*unaffected
LinuxLinux6.8.5 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References