CVE-2024-45018

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: flowtable: initialise extack before use

Fix missing initialisation of extack in flow offload.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc29f74e0df7a02b8303bcdce93a7c0132d62577a < e5ceff2196dc633c995afb080f6f44a72cff6e1daffected
LinuxLinuxc29f74e0df7a02b8303bcdce93a7c0132d62577a < 356beb911b63a8cff34cb57f755c2a2d2ee9dec7affected
LinuxLinuxc29f74e0df7a02b8303bcdce93a7c0132d62577a < 7eafeec6be68ebd6140a830ce9ae68ad5b67ec78affected
LinuxLinuxc29f74e0df7a02b8303bcdce93a7c0132d62577a < c7b760499f7791352b49b11667ed04b23d7f5b0faffected
LinuxLinuxc29f74e0df7a02b8303bcdce93a7c0132d62577a < 119be227bc04f5035efa64cb823b8a5ca5e2d1c1affected
LinuxLinuxc29f74e0df7a02b8303bcdce93a7c0132d62577a < e9767137308daf906496613fd879808a07f006a2affected
LinuxLinux5.5affected
LinuxLinux0 < 5.5unaffected
LinuxLinux5.10.225 <= 5.10.*unaffected
LinuxLinux5.15.166 <= 5.15.*unaffected
LinuxLinux6.1.107 <= 6.1.*unaffected
LinuxLinux6.6.48 <= 6.6.*unaffected
LinuxLinux6.10.7 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

Additional References

References