CVE-2024-26835

MEDIUM

Linux kernel - Info Disclosure

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: set dormant flag on hook register failure We need to set the dormant flag again if we fail to register the hooks. During memory pressure hook registration can fail and we end up with a table marked as active but no registered hooks. On table/base chain deletion, nf_tables will attempt to unregister the hook again which yields a warn splat from the nftables core.

References (9)

[Patch] https://git.kernel.org/stable/c/0c9302a6da262e6ab6a6c1d30f04a6130ed97376

[Patch] https://git.kernel.org/stable/c/31ea574aeca1aa488e18716459bde057217637af

[Patch] https://git.kernel.org/stable/c/664264a5c55bf97a9c571c557d477b75416199be

[Patch] https://git.kernel.org/stable/c/6f2496366426cec18ba53f1c7f6c3ac307ca6a95

[Patch] https://git.kernel.org/stable/c/a6411f3c48f991c19aaf9a24fce36865fbba28d7

[Patch] https://git.kernel.org/stable/c/ae4360cbd385f0d7a8a86d5723e50448cc6318f3

[Patch] https://git.kernel.org/stable/c/bccebf64701735533c8db37773eeacc6566cc8ec

[Patch] https://git.kernel.org/stable/c/f2135bbf14949687e96cabb13d8a91ae3deb9069

[Mailing List] https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 1.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Classification

Status published

Affected Products (13)

linux/linux_kernel < 5.4.270

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

debian/debian_linux

linux/Kernel < 5.4.270linux

linux/Kernel < 5.10.211linux

linux/Kernel < 5.15.150linux

linux/Kernel < 6.1.80linux

linux/Kernel < 6.6.19linux

linux/Kernel < 6.7.7linux

Timeline

Published Apr 17, 2024

Tracked Since Feb 18, 2026