First published: Thu Aug 22 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: fix possible use-after-free Eric Dumazet says: The sock_hold() side seems suspect, because there is no guarantee that sk_refcnt is not already 0. On failure, we cannot queue the packet and need to indicate an error. The packet will be dropped by the caller. v2: split skb prefetch hunk into separate change
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Affected Software | Affected Version | How to fix |
---|---|---|
Linux Linux kernel | >=2.6.29<4.9.305 | |
Linux Linux kernel | >=4.10<4.14.270 | |
Linux Linux kernel | >=4.15<4.19.233 | |
Linux Linux kernel | >=4.20<5.4.183 | |
Linux Linux kernel | >=5.5<5.10.104 | |
Linux Linux kernel | >=5.11<5.15.27 | |
Linux Linux kernel | >=5.16<5.16.13 | |
Linux Linux kernel | =5.17-rc1 | |
Linux Linux kernel | =5.17-rc2 | |
Linux Linux kernel | =5.17-rc3 | |
Linux Linux kernel | =5.17-rc4 | |
Linux Linux kernel | =5.17-rc5 | |
Linux Linux kernel | =5.17-rc6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.