CVE-2024-27403
netfilter: nft_flow_offload: reset dst in route object after setting up flow
References
Notes
carnil> Introduced in a3c90f7a2323 ("netfilter: nf_tables: flow offload expression").
carnil> Vulnerable versions: 4.16-rc1.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.8-rc6) [9e0f0430389be7696396c62f037be4bf72cf93e3]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.12-upstream-stable |
N/A "Fixed before branching point"
|
| 6.8-upstream-stable |
N/A "Fixed before branching point"
|
| 6.6-upstream-stable |
released (6.6.19) [558b00a30e05753a62ecc7e05e939ca8f0241148]
|
| 6.1-upstream-stable |
released (6.1.80) [012df10717da02367aaf92c65f9c89db206c15f4]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.7.7-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
released (6.1.82-1)
|
| 5.10-bullseye-security |
needed
|
