CVE-2024-0193 in Linuxinformation

Résumé

par MITRE • 02/01/2024

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFT_CHAIN object or NFT_OBJECT object, allowing a local unprivileged user with CAP_NET_ADMIN capability to escalate their privileges on the system.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsable

Red Hat, Inc.

Réserver

02/01/2024

Divulgation

02/01/2024

Modérer

accepté

Entrée

VDB-249513

CPE

prêt

EPSS

0.00843

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!