CVE-2024-42070

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers

register store validation for NFT_DATA_VALUE is conditional, however, the datatype is always either NFT_DATA_VALUE or NFT_DATA_VERDICT. This only requires a new helper function to infer the register type from the set datatype so this conditional check can be removed. Otherwise, pointer to chain object can be leaked through the registers.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < 40188a25a9847dbeb7ec67517174a835a677752faffected
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < 23752737c6a618e994f9a310ec2568881a6b49c4affected
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < 5d43d789b57943720dca4181a05f6477362b94cfaffected
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < 461302e07f49687ffe7d105fa0a330c07c7646d8affected
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < efb27ad05949403848f487823b597ed67060e007affected
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < 952bf8df222599baadbd4f838a49c4fef81d2564affected
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < 41a6375d48deaf7f730304b5153848bfa1c2980faffected
LinuxLinux96518518cc417bb0a8c80b9fb736202e28acdf96 < 7931d32955e09d0a11b1fe0b6aac1bfa061c005caffected
LinuxLinux3.13affected
LinuxLinux0 < 3.13unaffected
LinuxLinux4.19.317 <= 4.19.*unaffected
LinuxLinux5.4.279 <= 5.4.*unaffected
LinuxLinux5.10.221 <= 5.10.*unaffected
LinuxLinux5.15.162 <= 5.15.*unaffected
LinuxLinux6.1.97 <= 6.1.*unaffected
LinuxLinux6.6.37 <= 6.6.*unaffected
LinuxLinux6.9.8 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

Additional References

References