CVE-2024-0193 in Linuxinformazioni

Riassunto

di MITRE • 02/01/2024

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFT_CHAIN object or NFT_OBJECT object, allowing a local unprivileged user with CAP_NET_ADMIN capability to escalate their privileges on the system.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsabile

Red Hat, Inc.

Prenotare

02/01/2024

Divulgazione

02/01/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00843

KEV

no

Attività

molto basso

Fonti

Do you want to use VulDB in your project?

Use the official API to access entries easily!