In the Linux kernel, the following vulnerability has been resolved:
netfilter: ctnetlink: use helper function to calculate expect ID
Delete expectation path is missing a call to the nf_expect_get_id()
helper function to calculate the expectation ID, otherwise LSB of the
expectation object address is leaked to userspace.
Metrics
Affected Vendors & Products
References
History
Mon, 28 Oct 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
threat_severity
|
threat_severity
|
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 10 Sep 2024 07:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Tue, 03 Sep 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Linux
Linux linux Kernel |
|
Weaknesses | CWE-401 | |
CPEs | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:4.19.320:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:5.1:*:*:*:*:*:*:* |
|
Vendors & Products |
Linux
Linux linux Kernel |
Fri, 30 Aug 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Fri, 30 Aug 2024 08:00:00 +0000
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-08-30T07:56:41.693Z
Updated: 2024-12-19T09:18:37.697Z
Reserved: 2024-08-21T05:34:56.665Z
Link: CVE-2024-44944
Vulnrichment
Updated: 2024-09-11T12:42:19.381Z
NVD
Status : Modified
Published: 2024-08-30T08:15:04.580
Modified: 2024-09-10T08:15:03.230
Link: CVE-2024-44944
Redhat