CVE-2024-26634

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-26634

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26634.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-26634

Downstream

BELL-CVE-2024-26634

DEBIAN-CVE-2024-26634

SUSE-SU-2025:01919-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1177-1

SUSE-SU-2025:1178-1

SUSE-SU-2025:1180-1

SUSE-SU-2025:1241-1

UBUNTU-CVE-2024-26634

USN-6818-1

USN-6818-3

USN-6818-4

USN-6819-1

USN-6819-3

USN-6819-4

Related

Published

2024-03-18T11:15:10Z

Modified

2025-08-09T19:01:26Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

net: fix removing a namespace with conflicting altnames

Mark reports a BUG() when a net namespace is removed.

kernel BUG at net/core/dev.c:11520!

Physical interfaces moved outside of initnet get "refunded" to initnet when that namespace disappears. The main interface name may get overwritten in the process if it would have conflicted. We need to also discard all conflicting altnames. Recent fixes addressed ensuring that altnames get moved with the main interface, which surfaced this problem.

References

Affected packages