CVE-2024-46855

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_socket: fix sk refcount leaks

We must put 'sk' reference before returning.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2 < 076d281e90aaf4192799ecb9a1ed82321e133ecdaffected
LinuxLinux039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2 < 6572440f78b724c46070841a68254ebc534cde24affected
LinuxLinux039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2 < ddc7c423c4a5386bf865474c694b48178efd311aaffected
LinuxLinux039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2 < 33c2258bf8cb17fba9e58b111d4c4f4cf43a4896affected
LinuxLinux039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2 < 83e6fb59040e8964888afcaa5612cc1243736715affected
LinuxLinux039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2 < 1f68e097e20d3c695281a9c6433acc37be47fe11affected
LinuxLinux039b1f4f24ecc8493b6bb9d70b4b78750d1b35c2 < 8b26ff7af8c32cb4148b3e147c52f9e4c695209caffected
LinuxLinux6934809432d23e9e0081f82d882b8fc765deeb4aaffected
LinuxLinuxf63432cd1bb224f61216e4a4726ff29ddffbed98affected
LinuxLinux4.19.76 < 4.20affected
LinuxLinux5.2.18 < 5.3affected
LinuxLinux5.3affected
LinuxLinux0 < 5.3unaffected
LinuxLinux5.4.295 <= 5.4.*unaffected
LinuxLinux5.10.239 <= 5.10.*unaffected
LinuxLinux5.15.168 <= 5.15.*unaffected
LinuxLinux6.1.111 <= 6.1.*unaffected
LinuxLinux6.6.52 <= 6.6.*unaffected
LinuxLinux6.10.11 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References