In the Linux kernel, the following vulnerability has been resolved:
netfilter: iptables: Fix potential null-ptr-deref in ip6tablenattable_init().
ip6tablenattableinit() accesses net->gen->ptr[ip6tablenatnetops.id], but the function is exposed to user space before the entry is allocated via registerpernetsubsys().
Let's call registerpernetsubsys() before xtregistertemplate().
{ "vanir_signatures": [ { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@91b6df6611b7edb28676c4f63f90c56c30d3e601", "signature_type": "Line", "target": { "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "line_hashes": [ "146849698450248576027815167613124997194", "44139047833146996621857707759321459586", "57406274256736053182144389154795086457", "298944669713447739049612374197645981825", "157687032374368405406551487231376235689", "291381618628321007567370395365703493325", "68456849308186854701532101231634274873", "235366593718830964317205633305154355686", "311070582662527136604411747439089008955", "121327268883605565958533133171672091585", "230597608716893274955106187301635994493", "312601841880507351612365151755080912822", "103575225746037809105275085400107750453", "293545652124391608459149425365533738761", "63264825159151984657218587014400703473", "249798547907987051098559323152731619334" ], "threshold": 0.9 }, "id": "CVE-2024-42269-06cd2b0a" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@419ee6274c5153b89c4393c1946faa4c3cad4f9e", "signature_type": "Function", "target": { "function": "ip6table_nat_exit", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 108.0, "function_hash": "109570493664696327740101960445275925303" }, "id": "CVE-2024-42269-0da09d5f" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87dba44e9471b79b255d0736858a897332db9226", "signature_type": "Function", "target": { "function": "ip6table_nat_init", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 239.0, "function_hash": "257059819330108679582480782729429470251" }, "id": "CVE-2024-42269-2407e746" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87dba44e9471b79b255d0736858a897332db9226", "signature_type": "Function", "target": { "function": "ip6table_nat_exit", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 108.0, "function_hash": "109570493664696327740101960445275925303" }, "id": "CVE-2024-42269-2e41d962" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@419ee6274c5153b89c4393c1946faa4c3cad4f9e", "signature_type": "Line", "target": { "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "line_hashes": [ "146849698450248576027815167613124997194", "44139047833146996621857707759321459586", "57406274256736053182144389154795086457", "298944669713447739049612374197645981825", "157687032374368405406551487231376235689", "291381618628321007567370395365703493325", "68456849308186854701532101231634274873", "235366593718830964317205633305154355686", "311070582662527136604411747439089008955", "121327268883605565958533133171672091585", "230597608716893274955106187301635994493", "312601841880507351612365151755080912822", "103575225746037809105275085400107750453", "293545652124391608459149425365533738761", "63264825159151984657218587014400703473", "249798547907987051098559323152731619334" ], "threshold": 0.9 }, "id": "CVE-2024-42269-2f27e687" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87dba44e9471b79b255d0736858a897332db9226", "signature_type": "Line", "target": { "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "line_hashes": [ "146849698450248576027815167613124997194", "44139047833146996621857707759321459586", "57406274256736053182144389154795086457", "298944669713447739049612374197645981825", "157687032374368405406551487231376235689", "291381618628321007567370395365703493325", "68456849308186854701532101231634274873", "235366593718830964317205633305154355686", "311070582662527136604411747439089008955", "121327268883605565958533133171672091585", "230597608716893274955106187301635994493", "312601841880507351612365151755080912822", "103575225746037809105275085400107750453", "293545652124391608459149425365533738761", "63264825159151984657218587014400703473", "249798547907987051098559323152731619334" ], "threshold": 0.9 }, "id": "CVE-2024-42269-34e934af" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@91b6df6611b7edb28676c4f63f90c56c30d3e601", "signature_type": "Function", "target": { "function": "ip6table_nat_init", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 239.0, "function_hash": "257059819330108679582480782729429470251" }, "id": "CVE-2024-42269-3b2c4d28" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c22921df777de5606f1047b1345b8d22ef1c0b34", "signature_type": "Line", "target": { "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "line_hashes": [ "146849698450248576027815167613124997194", "44139047833146996621857707759321459586", "57406274256736053182144389154795086457", "298944669713447739049612374197645981825", "157687032374368405406551487231376235689", "291381618628321007567370395365703493325", "68456849308186854701532101231634274873", "235366593718830964317205633305154355686", "311070582662527136604411747439089008955", "121327268883605565958533133171672091585", "230597608716893274955106187301635994493", "312601841880507351612365151755080912822", "103575225746037809105275085400107750453", "293545652124391608459149425365533738761", "63264825159151984657218587014400703473", "249798547907987051098559323152731619334" ], "threshold": 0.9 }, "id": "CVE-2024-42269-535cbefb" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c22921df777de5606f1047b1345b8d22ef1c0b34", "signature_type": "Function", "target": { "function": "ip6table_nat_exit", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 108.0, "function_hash": "109570493664696327740101960445275925303" }, "id": "CVE-2024-42269-71834a99" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e85b9b6a87be4cb3710082038b677e97f2389003", "signature_type": "Function", "target": { "function": "ip6table_nat_exit", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 108.0, "function_hash": "109570493664696327740101960445275925303" }, "id": "CVE-2024-42269-a4aff8c0" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c22921df777de5606f1047b1345b8d22ef1c0b34", "signature_type": "Function", "target": { "function": "ip6table_nat_init", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 239.0, "function_hash": "257059819330108679582480782729429470251" }, "id": "CVE-2024-42269-b32efa0f" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@91b6df6611b7edb28676c4f63f90c56c30d3e601", "signature_type": "Function", "target": { "function": "ip6table_nat_exit", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 108.0, "function_hash": "109570493664696327740101960445275925303" }, "id": "CVE-2024-42269-bfe307c8" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e85b9b6a87be4cb3710082038b677e97f2389003", "signature_type": "Line", "target": { "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "line_hashes": [ "146849698450248576027815167613124997194", "44139047833146996621857707759321459586", "57406274256736053182144389154795086457", "298944669713447739049612374197645981825", "157687032374368405406551487231376235689", "291381618628321007567370395365703493325", "68456849308186854701532101231634274873", "235366593718830964317205633305154355686", "311070582662527136604411747439089008955", "121327268883605565958533133171672091585", "230597608716893274955106187301635994493", "312601841880507351612365151755080912822", "103575225746037809105275085400107750453", "293545652124391608459149425365533738761", "63264825159151984657218587014400703473", "249798547907987051098559323152731619334" ], "threshold": 0.9 }, "id": "CVE-2024-42269-c42f39d1" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e85b9b6a87be4cb3710082038b677e97f2389003", "signature_type": "Function", "target": { "function": "ip6table_nat_init", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 239.0, "function_hash": "257059819330108679582480782729429470251" }, "id": "CVE-2024-42269-f93671f9" }, { "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@419ee6274c5153b89c4393c1946faa4c3cad4f9e", "signature_type": "Function", "target": { "function": "ip6table_nat_init", "file": "net/ipv6/netfilter/ip6table_nat.c" }, "deprecated": false, "digest": { "length": 239.0, "function_hash": "257059819330108679582480782729429470251" }, "id": "CVE-2024-42269-fdd07c7e" } ] }