CVE-2024-27019

May 1, 2024, 1:01 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() nft_unregister_obj() can concurrent with __nft_obj_type_get(), and there is not any protection when iterate over nf_tables_objects list in __nft_obj_type_get(). Therefore, there is potential data-race of nf_tables_objects list entry. Use list_for_each_entry_rcu() to iterate over nf_tables_objects list in __nft_obj_type_get(), and use rcu_read_lock() in the caller nft_obj_type_get() to protect the entire type query process.

Product(s) Impacted

Product Versions
Linux kernel
Linux Kernel

Weaknesses

References

https://git.kernel.org/stable/c/379bf7257bc5f2a1b1ca8514e08a871b7bf6d920
https://git.kernel.org/stable/c/4ca946b19caf655a08d5e2266d4d5526025ebb73
https://git.kernel.org/stable/c/ad333578f736d56920e090d7db1f8dec891d815e
https://git.kernel.org/stable/c/d78d867dcea69c328db30df665be5be7d0148484
https://git.kernel.org/stable/c/df7c0fb8c2b9f9cac65659332581b19682a71349

Tags

2024-05-01
416baaa9-dc9f-4396-8d5f-8c081fb06d67
CVE-2024-27019

Date

  • Published: May 1, 2024, 6:15 a.m.
  • Last Modified: May 1, 2024, 1:01 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.