CVE-2024-26642

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-26642

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26642.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-26642

Downstream

BELL-CVE-2024-26642

DEBIAN-CVE-2024-26642

DLA-3840-1

DLA-3842-1

DSA-5658-1

DSA-5681-1

OESA-2024-1617

OESA-2024-1618

OESA-2024-1622

OESA-2024-1647

OESA-2024-1648

OESA-2024-1649

RHSA-2024:3306

RHSA-2024:3460

RHSA-2024:3461

RHSA-2024:3618

RHSA-2024:3627

RHSA-2024:3810

RHSA-2024:4107

RHSA-2024:5256

RHSA-2024:5257

SUSE-SU-2024:1454-1

SUSE-SU-2024:1465-1

SUSE-SU-2024:1466-1

SUSE-SU-2024:1480-1

SUSE-SU-2024:1489-1

SUSE-SU-2024:1490-1

SUSE-SU-2024:1641-1

SUSE-SU-2024:1643-1

SUSE-SU-2024:1646-1

SUSE-SU-2024:1647-1

SUSE-SU-2024:1870-1

SUSE-SU-2024:2135-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

Related

Published

2024-03-21T11:15:28Z

Modified

2025-08-09T19:01:28Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: disallow anonymous set with timeout flag

Anonymous sets are never used with timeout from userspace, reject this. Exception to this rule is NFTSETEVAL to ensure legacy meters still work.

References

CVE-2024-26642

Affected packages