CVE-2024-44944

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: ctnetlink: use helper function to calculate expect ID

Delete expectation path is missing a call to the nf_expect_get_id() helper function to calculate the expectation ID, otherwise LSB of the expectation object address is leaked to userspace.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7b115755fb9d3aff0ddcd18a5c4d83381362acce < 66e7650dbbb8e236e781c670b167edc81e771450affected
LinuxLinux3c79107631db1f7fd32cf3f7368e4672004a3010 < 64c0b8e64be8368617ef08dfc59a3160563a1435affected
LinuxLinux3c79107631db1f7fd32cf3f7368e4672004a3010 < eb4ca1a97e08ff5b920664ba292e576257e2d184affected
LinuxLinux3c79107631db1f7fd32cf3f7368e4672004a3010 < 5e2c24f7b0911b15c29aefce760bcf770542fb61affected
LinuxLinux3c79107631db1f7fd32cf3f7368e4672004a3010 < 24f407042cf90b0872de667460230d8d50c06c39affected
LinuxLinux3c79107631db1f7fd32cf3f7368e4672004a3010 < 27662b46f2adaa52c1665a82af4b21c42c4337fdaffected
LinuxLinux3c79107631db1f7fd32cf3f7368e4672004a3010 < 74de442b8e12a207c07953ee068009a7701aff8faffected
LinuxLinux3c79107631db1f7fd32cf3f7368e4672004a3010 < 782161895eb4ac45cf7cfa8db375bd4766cb8299affected
LinuxLinux3d8b3d0384f709126beef6b917b7e97c23f18e74affected
LinuxLinux36bbd861a402a8c5bd8f0365a5967d34cc492f09affected
LinuxLinux1922476beeeea46bebbe577215078736dd4231dcaffected
LinuxLinuxf862c13c3c926d3008b2c2bcc746ab813108dfbfaffected
LinuxLinuxb0a90cae081d7ee14eaa46524fb70f4e23ae8905affected
LinuxLinux4.19.44 < 4.19.320affected
LinuxLinux3.16.72 < 3.17affected
LinuxLinux4.4.191 < 4.5affected
LinuxLinux4.9.190 < 4.10affected
LinuxLinux4.14.120 < 4.15affected
LinuxLinux5.0.17 < 5.1affected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux4.19.320 <= 4.19.*unaffected
LinuxLinux5.4.282 <= 5.4.*unaffected
LinuxLinux5.10.224 <= 5.10.*unaffected
LinuxLinux5.15.165 <= 5.15.*unaffected
LinuxLinux6.1.103 <= 6.1.*unaffected
LinuxLinux6.6.44 <= 6.6.*unaffected
LinuxLinux6.10.3 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References