ГлавнаяУязвимости → CVE-2024-1086
7.8высокая

CVE-2024-1086

→ есть в БДУ: BDU:2024-01187 (на русском)
Описание (на английском; русское — в БДУ выше)

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT. We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.

Затрагиваемое ПО
Linux Linux kernelFedoraproject FedoraRedhat Enterprise linux desktopRedhat Enterprise linux for ibm z systemsRedhat Enterprise linux for power big endianRedhat Enterprise linux for power little endianRedhat Enterprise linux serverRedhat Enterprise linux workstationDebian Debian linuxNetapp A250 firmwareNetapp A250Netapp 500f firmwareNetapp 500fNetapp C250 firmwareNetapp C250
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
http://www.openwall.com/lists/oss-security/2024/04/10/22http://www.openwall.com/lists/oss-security/2024/04/10/23http://www.openwall.com/lists/oss-security/2024/04/14/1http://www.openwall.com/lists/oss-security/2024/04/15/2http://www.openwall.com/lists/oss-security/2024/04/17/5https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660https://github.com/Notselwyn/CVE-2024-1086https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660