In the Linux kernel, the following vulnerability has been resolved:
netfilter: flowtable: validate pppoe header
Ensure there is sufficient room to access the protocol field of the
PPPoe header. Validate it once before the flowtable lookup, then use a
helper function to access protocol field.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 09:03
Type | Values Removed | Values Added |
---|---|---|
References | () https://git.kernel.org/stable/c/87b3593bed1868b2d9fe096c01bcdf0ea86cbebf - Patch | |
References | () https://git.kernel.org/stable/c/8bf7c76a2a207ca2b4cfda0a279192adf27678d7 - Patch | |
References | () https://git.kernel.org/stable/c/a2471d271042ea18e8a6babc132a8716bb2f08b9 - Patch | |
References | () https://git.kernel.org/stable/c/cf366ee3bc1b7d1c76a882640ba3b3f8f1039163 - Patch | |
References | () https://git.kernel.org/stable/c/d06977b9a4109f8738bb276125eb6a0b772bc433 - Patch |
23 May 2024, 19:33
Type | Values Removed | Values Added |
---|---|---|
First Time |
Fedoraproject
Fedoraproject fedora Linux linux Kernel Linux |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
CPE | cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* |
|
References | () https://git.kernel.org/stable/c/87b3593bed1868b2d9fe096c01bcdf0ea86cbebf - Patch | |
References | () https://git.kernel.org/stable/c/8bf7c76a2a207ca2b4cfda0a279192adf27678d7 - Patch | |
References | () https://git.kernel.org/stable/c/a2471d271042ea18e8a6babc132a8716bb2f08b9 - Patch | |
References | () https://git.kernel.org/stable/c/cf366ee3bc1b7d1c76a882640ba3b3f8f1039163 - Patch | |
References | () https://git.kernel.org/stable/c/d06977b9a4109f8738bb276125eb6a0b772bc433 - Patch | |
CWE | NVD-CWE-noinfo |
13 May 2024, 08:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 May 2024, 03:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary |
|
01 May 2024, 06:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-05-01 06:15
Updated : 2024-11-21 09:03
NVD link : CVE-2024-27016
Mitre link : CVE-2024-27016
CVE.ORG link : CVE-2024-27016
JSON object : View
Products Affected
linux
- linux_kernel
fedoraproject
- fedora
CWE