CVE-2024-1085 | Linux Kernel up to 6.7 Netfilter nf_tables_api.c nft_setelem_catchall_deactivate use after free

Inserito da Angelo Barbosa | Gen 31, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.7. It has been rated as critical. This issue affects the function nft_setelem_catchall_deactivate of the file net/netfilter/nf_tables_api.c of the component Netfilter. The manipulation leads to use after free.

The identification of this vulnerability is CVE-2024-1085. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-1085 | Linux Kernel up to 6.7 Netfilter nf_tables_api.c nft_setelem_catchall_deactivate use after free

Post correlati

CVE-2024-3242 | Brizy Plugin up to 2.4.44 on WordPress unrestricted upload

CVE-2024-37906 | admidio up to 4.3.8 ecard_send.php ecard_recipients sql injection

CVE-2022-34344 | Rymera Web Wholesale Suite Plugin up to 2.1.5 on WordPress authorization

CVE-2024-8576 | TOTOLINK AC1200 T8/AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207 /cgi-bin/cstecgi.cgi setIpPortFilterRules desc buffer overflow