CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nftables: do not compare internal table flags on updates
Restore skipping transaction if table update does not modify flags.
Other sources
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nftables: do not compare internal table flags on updates
The Linux kernel CVE team has assigned CVE-2024-27065 to this issue.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050132-CVE-2024-27065-8c9d@gregkh/T
— Red Hat
Linux Kernel is vulnerable to a denial of service, caused by a flaw in the table flag updates, in the netfilter: nftables module. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.
— IBM
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of CVE-2024-27065?
CVE-2024-27065 has been resolved as a significant vulnerability in the Linux kernel that affected netfilter's handling of table flags.
How do I fix CVE-2024-27065?
To fix CVE-2024-27065, you should upgrade to the latest Linux kernel versions specified in the vulnerability report, such as 5.4.273, 5.10.214, 5.15.153, 6.1.83, and others.
Which versions of Linux kernels are affected by CVE-2024-27065?
CVE-2024-27065 affects multiple Linux kernel versions prior to the mentioned updates including versions 5.4 to 6.9.
Is CVE-2024-27065 related to network security?
Yes, CVE-2024-27065 specifically impacts network filtering functionalities within the Linux kernel.
What types of Linux distributions are impacted by CVE-2024-27065?
CVE-2024-27065 affects both Red Hat and Debian based Linux distributions due to vulnerabilities in their kernel packages.