CVE-2024-0193 in Linuxthông tin

Tóm tắt

Bởi MITRE • 02/01/2024

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFT_CHAIN object or NFT_OBJECT object, allowing a local unprivileged user with CAP_NET_ADMIN capability to escalate their privileges on the system.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

chịu trách nhiệm

Red Hat, Inc.

Đặt trước

02/01/2024

Tiết lộ

02/01/2024

Kiểm duyệt

được chấp nhận

EPSS

0.00843

KEV

không

Các hoạt động

rất thấp

Nguồn

Do you know our Splunk app?

Download it now for free!