CVE-2024-0607
- Source
- https://cve.org/CVERecord?id=CVE-2024-0607
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-0607.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-0607
- Downstream
- Related
- Published
- 2024-01-18T16:15:08.690Z
- Modified
- 2026-03-15T22:48:07.119139Z
- Severity
-
- 6.6 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nftbyteordereval() function, where the code iterates through a loop and writes to the
dstarray. On each iteration, 8 bytes are written, butdstis an array of u32, so each element only has space for 4 bytes. That means every iteration overwrites part of the previous element corrupting this array of u32. This flaw allows a local user to cause a denial of service or potentially break NetFilter functionality. - References
-
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://access.redhat.com/security/cve/CVE-2024-0607
- https://bugzilla.redhat.com/show_bug.cgi?id=2258635
- https://github.com/torvalds/linux/commit/c301f0981fdd3fd1ffac6836b423c4d7a8e0eb63
Affected packages
Git /
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-0607.json"
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.7"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.7-rc1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "39"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.0"
}
]
}
]