CVE-2024-0193

Updated: 2024-07-09 21:00:41.109864

Description:

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFT_CHAIN object or NFT_OBJECT object, allowing a local unprivileged user with CAP_NET_ADMIN capability to escalate their privileges on the system.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 6.7

Status

OS name Project name Version Score Severity Status Errata Last updated
AlmaLinux 9.2 ESU kernel 5.14.0 6.7 MEDIUM Released CLSA-2024:1715000325 2024-05-06 14:30:12
AlmaLinux 9.2 FIPS kernel 5.14.0 6.7 MEDIUM Released CLSA-2024:1715000749 2024-05-06 14:30:08
CentOS 6 ELS kernel 2.6.32 6.7 MEDIUM Ignored 2024-02-29 13:09:45
CentOS 7 ELS kernel 3.10.0 6.7 MEDIUM Ignored 2024-02-29 13:09:45
CentOS 8.4 ELS kernel 4.18.0 6.7 MEDIUM Ignored 2024-02-29 13:09:45
CentOS 8.5 ELS kernel 4.18.0 6.7 MEDIUM Ignored 2024-02-29 13:09:45
CentOS Stream 8 ELS kernel 4.18.0 6.7 MEDIUM Ignored 2024-05-10 10:14:39
CloudLinux 6 ELS kernel 2.6.32 6.7 MEDIUM Ignored 2024-02-29 13:09:45
CloudLinux 7 ELS kernel 3.10.0 6.7 MEDIUM Ignored 2024-07-22 12:05:48
Oracle Linux 6 ELS kernel 2.6.32 6.7 MEDIUM Ignored 2024-02-29 13:09:45
Total: 13