CVE-2024-35962
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-35962
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-35962.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-35962
- Downstream
- Related
- Published
- 2024-05-20T09:41:53Z
- Modified
- 2025-10-15T11:43:39.944334Z
- Summary
- netfilter: complete validation of user input
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
netfilter: complete validation of user input
In my recent commit, I missed that doreplace() handlers use copyfromsockptr() (which I fixed), followed by unsafe copyfromsockptroffset() calls.
In all functions, we can perform the @optlen validation before even calling xtalloctable_info() with the following check:
if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL;
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/562b7245131f6e9f1d280c8b5a8750f03edfc05c
- https://git.kernel.org/stable/c/65acf6e0501ac8880a4f73980d01b5d27648b956
- https://git.kernel.org/stable/c/89242d9584c342cb83311b598d9e6b82572eadf8
- https://git.kernel.org/stable/c/97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7
- https://git.kernel.org/stable/c/c760089aa98289b4b88a7ff5a62dd92845adf223
- https://git.kernel.org/stable/c/cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0f038242b77ddfc505bf4163d4904c1abd2e74d6Fixedcf4bc359b76144a3dd55d7c09464ef4c5f2b2b05
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced440e948cf0eff32cfe322dcbca3f2525354b159bFixed97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced18aae2cb87e5faa9c5bd865260ceadac60d5a6c5Fixedc760089aa98289b4b88a7ff5a62dd92845adf223
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced81d51b9b7c95e791ba3c1a2dd77920a9d3b3f525Fixed89242d9584c342cb83311b598d9e6b82572eadf8
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced58f2bfb789e6bd3bc24a2c9c1580f3c67aec3018Fixed562b7245131f6e9f1d280c8b5a8750f03edfc05c
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0c83842df40f86e529db6842231154772c20edccFixed65acf6e0501ac8880a4f73980d01b5d27648b956
Affected versions
v5.*
v5.10.215
v5.15.154
v5.15.155
v6.*
v6.1.85
v6.1.86
v6.6.26
v6.6.27
v6.8.5
v6.8.6
v6.9-rc2
Database specific
{
"vanir_signatures": [
{
"id": "CVE-2024-35962-030370aa",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-06556219",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-0bfc1ec6",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-0d111a8b",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-0d225428",
"signature_type": "Line",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-1446a400",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-18b75359",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-1c1520b9",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-1c33369d",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-1e890b2a",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-25e27e48",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-308ba4bc",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-393c7d27",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-399c3031",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-3f066c1d",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-5199211e",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-5a0edd6a",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-5be201c5",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-62874ad5",
"signature_type": "Line",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-64d300ca",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-68120555",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-6919267d",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-7df5eef8",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-81d2c7ef",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-86c4cd0b",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-9914694d",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-99456557",
"signature_type": "Line",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-9bf2b5b4",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-9e1fa743",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-a1341626",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-a7717cc8",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-ab2e8beb",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-addd60be",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c760089aa98289b4b88a7ff5a62dd92845adf223"
},
{
"id": "CVE-2024-35962-b5bf75e1",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cf4bc359b76144a3dd55d7c09464ef4c5f2b2b05"
},
{
"id": "CVE-2024-35962-c6f21006",
"signature_type": "Function",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-d08cf010",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-d3f9b9a9",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-dddc5210",
"signature_type": "Line",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-de153f4e",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
},
{
"id": "CVE-2024-35962-e18cc622",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-e5eab39d",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/ip_tables.c",
"function": "compat_do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1028.0,
"function_hash": "273006832057654551434009602876586368603"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-f1065119",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@97dab36e57c64106e1c8ebd66cbf0d2d1e52d6b7"
},
{
"id": "CVE-2024-35962-f63681b1",
"signature_type": "Line",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-f96fa5ea",
"signature_type": "Line",
"target": {
"file": "net/ipv6/netfilter/ip6_tables.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072",
"248476338346218527045592263968930474655",
"275825686098356172091908375220234738324",
"209990013704040840857547358326702947794",
"254673205131634113211118246769611770072"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@89242d9584c342cb83311b598d9e6b82572eadf8"
},
{
"id": "CVE-2024-35962-fec392db",
"signature_type": "Function",
"target": {
"file": "net/ipv4/netfilter/arp_tables.c",
"function": "do_replace"
},
"signature_version": "v1",
"digest": {
"length": 1011.0,
"function_hash": "219511824452516864492171327612883231635"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@562b7245131f6e9f1d280c8b5a8750f03edfc05c"
}
]
}
Linux / Kernel
Package
- Name
- Kernel