CVE-2024-1085 | Linux Kernel up to 6.7 Netfilter nf_tables_api.c nft_setelem_catchall_deactivate use after free

Inserito da Angelo Barbosa | Gen 31, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.7. It has been rated as critical. This issue affects the function nft_setelem_catchall_deactivate of the file net/netfilter/nf_tables_api.c of the component Netfilter. The manipulation leads to use after free.

The identification of this vulnerability is CVE-2024-1085. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-1085 | Linux Kernel up to 6.7 Netfilter nf_tables_api.c nft_setelem_catchall_deactivate use after free

Post correlati

CVE-2023-50459 | in2code femanager Extension up to 7.2.2 on TYPO3 access control

CVE-2024-32112 | Leadinfo Plugin up to 1.0 on WordPress cross-site request forgery

CVE-2024-9455 | WP Cleanup and Basic Functions Plugin up to 2.2.1 on WordPress SVG File Upload cross site scripting

CVE-2024-38818 | VMware NSX/Cloud Foundation Group Role privileges management