GHSA-cf4c-955g-mjxm

Опубликовано: 12 июл. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_inner: validate mandatory meta and payload

Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from userspace.

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_inner: validate mandatory meta and payload

Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from userspace.

Ссылки

EPSS

Процентиль: 11%

0.00039

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2024-39504

Дефекты

CWE-476

Связанные уязвимости

CVE-2024-39504

CVSS3: 5.5

ubuntu

около 1 года назад

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from userspace.