In the Linux kernel, the following vulnerability has been resolved:
netfilter: nftables: fully validate NFTDATA_VALUE on store to data registers
register store validation for NFTDATAVALUE is conditional, however, the datatype is always either NFTDATAVALUE or NFTDATAVERDICT. This only requires a new helper function to infer the register type from the set datatype so this conditional check can be removed. Otherwise, pointer to chain object can be leaked through the registers.
{ "vanir_signatures": [ { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "64204777011026288964053835351373326832", "311361001337008289975840551943573098699", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "22773896024249152437725980310840157224", "99969639992931660922151698274411043597", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-090ce4ec", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@952bf8df222599baadbd4f838a49c4fef81d2564" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "64204777011026288964053835351373326832", "287645929644290221016434052598715846795", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "22773896024249152437725980310840157224", "99969639992931660922151698274411043597", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-0ec67cfc", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@461302e07f49687ffe7d105fa0a330c07c7646d8" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-1111ee68", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7931d32955e09d0a11b1fe0b6aac1bfa061c005c" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "64204777011026288964053835351373326832", "311361001337008289975840551943573098699", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "22773896024249152437725980310840157224", "99969639992931660922151698274411043597", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-1bca2dce", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@41a6375d48deaf7f730304b5153848bfa1c2980f" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-2653003a", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5d43d789b57943720dca4181a05f6477362b94cf" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "64204777011026288964053835351373326832", "287645929644290221016434052598715846795", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "22773896024249152437725980310840157224", "99969639992931660922151698274411043597", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-3241ad08", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@efb27ad05949403848f487823b597ed67060e007" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-493e89f0", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@efb27ad05949403848f487823b597ed67060e007" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 1814.0, "function_hash": "89348050227220073959941997813725739100" }, "id": "CVE-2024-42070-4d886c56", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40188a25a9847dbeb7ec67517174a835a677752f" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-5486ac9e", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7931d32955e09d0a11b1fe0b6aac1bfa061c005c" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-5953e901", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@23752737c6a618e994f9a310ec2568881a6b49c4" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-5a01530f", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@952bf8df222599baadbd4f838a49c4fef81d2564" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-5fc14d7d", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40188a25a9847dbeb7ec67517174a835a677752f" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 2020.0, "function_hash": "213622531518030378421762281820853821226" }, "id": "CVE-2024-42070-6ac52bb7", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7931d32955e09d0a11b1fe0b6aac1bfa061c005c" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "327456770420269525291725678229389491260" }, "id": "CVE-2024-42070-6d18ee3a", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5d43d789b57943720dca4181a05f6477362b94cf" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "327456770420269525291725678229389491260" }, "id": "CVE-2024-42070-708bec62", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7931d32955e09d0a11b1fe0b6aac1bfa061c005c" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-71e9c014", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@41a6375d48deaf7f730304b5153848bfa1c2980f" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "327456770420269525291725678229389491260" }, "id": "CVE-2024-42070-743338ea", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@efb27ad05949403848f487823b597ed67060e007" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 2006.0, "function_hash": "164821290197107116266200745062395508715" }, "id": "CVE-2024-42070-82348f5d", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@efb27ad05949403848f487823b597ed67060e007" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-86d29a7a", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@23752737c6a618e994f9a310ec2568881a6b49c4" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "327456770420269525291725678229389491260" }, "id": "CVE-2024-42070-873651b1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@41a6375d48deaf7f730304b5153848bfa1c2980f" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-9496c9ab", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@461302e07f49687ffe7d105fa0a330c07c7646d8" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 1991.0, "function_hash": "67665408477653987882757373365609999743" }, "id": "CVE-2024-42070-95da5cde", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5d43d789b57943720dca4181a05f6477362b94cf" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 2020.0, "function_hash": "213622531518030378421762281820853821226" }, "id": "CVE-2024-42070-9e180ab5", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@41a6375d48deaf7f730304b5153848bfa1c2980f" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 2006.0, "function_hash": "164821290197107116266200745062395508715" }, "id": "CVE-2024-42070-a52a5547", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@461302e07f49687ffe7d105fa0a330c07c7646d8" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "64204777011026288964053835351373326832", "311361001337008289975840551943573098699", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "22773896024249152437725980310840157224", "99969639992931660922151698274411043597", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-a7e145b1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7931d32955e09d0a11b1fe0b6aac1bfa061c005c" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-accde65a", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@461302e07f49687ffe7d105fa0a330c07c7646d8" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-b0a7bd0a", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40188a25a9847dbeb7ec67517174a835a677752f" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "221027227583284452397424855725911768436", "136289753610108073024705700084700915667", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "22773896024249152437725980310840157224", "99969639992931660922151698274411043597", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-b450d77f", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5d43d789b57943720dca4181a05f6477362b94cf" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "327456770420269525291725678229389491260" }, "id": "CVE-2024-42070-b785bdb5", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@461302e07f49687ffe7d105fa0a330c07c7646d8" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "316619362390079614314928894177353105686" }, "id": "CVE-2024-42070-bf47eb02", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@23752737c6a618e994f9a310ec2568881a6b49c4" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 2028.0, "function_hash": "11403319569747534648671200928312665690" }, "id": "CVE-2024-42070-c06ba190", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@952bf8df222599baadbd4f838a49c4fef81d2564" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-c1892327", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@efb27ad05949403848f487823b597ed67060e007" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-c281e15f", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@952bf8df222599baadbd4f838a49c4fef81d2564" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "327456770420269525291725678229389491260" }, "id": "CVE-2024-42070-cd8e2ddf", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@952bf8df222599baadbd4f838a49c4fef81d2564" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "221027227583284452397424855725911768436", "136289753610108073024705700084700915667", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "27016116214462313423572672515883462700", "239952570305205477947746979155134710766", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-d508ffd6", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40188a25a9847dbeb7ec67517174a835a677752f" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "include/net/netfilter/nf_tables.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "165214873364120267877479218047765460188", "339072660435171220106952172282685051065", "125974379047266720877650495649479908108" ], "threshold": 0.9 }, "id": "CVE-2024-42070-d682324f", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@41a6375d48deaf7f730304b5153848bfa1c2980f" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nf_tables_api.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "206949319331326749761126113755034066348", "185387127218162177547472998779404821068", "232001785800318286947230068156571612964", "221027227583284452397424855725911768436", "136289753610108073024705700084700915667", "75437083551724559313456881834112194004", "199488029030551828852277708911833506848", "258817428406662023188486643677455711881", "219136253414725077439310983082832537351", "27016116214462313423572672515883462700", "239952570305205477947746979155134710766", "330395380944880653361312753363168989653", "277994206160701972601111730176172827880", "231026012707133783089122603902734971892" ], "threshold": 0.9 }, "id": "CVE-2024-42070-d7f512c2", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@23752737c6a618e994f9a310ec2568881a6b49c4" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nft_validate_register_store" }, "signature_version": "v1", "digest": { "length": 726.0, "function_hash": "316619362390079614314928894177353105686" }, "id": "CVE-2024-42070-dfcf1ddc", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@40188a25a9847dbeb7ec67517174a835a677752f" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "net/netfilter/nft_lookup.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "161246191229506988670246380869331770123", "247831056256231190582036323638657736498", "257396231922915928795011322873555991896", "94528075365373572312778481241145324757" ], "threshold": 0.9 }, "id": "CVE-2024-42070-f074a546", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5d43d789b57943720dca4181a05f6477362b94cf" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "net/netfilter/nf_tables_api.c", "function": "nf_tables_fill_setelem" }, "signature_version": "v1", "digest": { "length": 1820.0, "function_hash": "5307473007075343973398211225711170903" }, "id": "CVE-2024-42070-f4aa131f", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@23752737c6a618e994f9a310ec2568881a6b49c4" } ] }