CVE-2024-27015

May 1, 2024, 1:02 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: incorrect pppoe tuple pppoe traffic reaching ingress path does not match the flowtable entry because the pppoe header is expected to be at the network header offset. This bug causes a mismatch in the flow table lookup, so pppoe packets enter the classical forwarding path.

Product(s) Impacted

Product Versions
Linux kernel
Linux Kernel

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/4ed82dd368ad883dc4284292937b882f044e625d
https://git.kernel.org/stable/c/6db5dc7b351b9569940cd1cf445e237c42cd6d27
https://git.kernel.org/stable/c/e3f078103421642fcd5f05c5e70777feb10f000d
https://git.kernel.org/stable/c/e719b52d0c56989b0f3475a03a6d64f182c85b56
https://git.kernel.org/stable/c/f1c3c61701a0b12f4906152c1626a5de580ea3d2

Tags

2024-05-01
416baaa9-dc9f-4396-8d5f-8c081fb06d67
CVE-2024-27015

Date

  • Published: May 1, 2024, 6:15 a.m.
  • Last Modified: May 1, 2024, 1:02 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.