VDB

CISA-2024-56783

CISA-2024-56783 PUBLISHED CVSS 5.5 MEDIUM

Reported by Linux · Published January 8, 2025

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level cgroup maximum depth is INT_MAX by default, there is a cgroup toggle to restrict this maximum depth to a more reasonable value not to harm performance. Remove unnecessary WARN_ON_ONCE which is reachable from userspace.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
LinuxLinuxace0db36b4a1db07a48517c4f04488d1cd05e5f5, f07e28e4c623168f9fa5c00f518bd341d4014aa6, 7f3287db654395f9c5ddd246325ff7889f550286
LinuxLinux6.11, 0, 6.1.120
linuxlinux_kernel6.11, 6.11, 6.1.112
LinuxLinuxace0db36b4a1db07a48517c4f04488d1cd05e5f5, f07e28e4c623168f9fa5c00f518bd341d4014aa6, 7f3287db654395f9c5ddd246325ff7889f550286

Timeline

  • Jan 8, 2025 CVE Published
  • May 4, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›