VDB

DEBIAN-CVE-2024-27017

DEBIAN-CVE-2024-27017 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: walk over current view on netlink dump The generation mask can be updated while netlink dump is in progress. The pipapo set backend walk iterator cannot rely on it to infer what view of the datastructure is to be used. Add notation to specify if user wants to read/update the set. Based on patch from Florian Westphal.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Affected Products

VendorProductVersions
Debian:12linux6.1.66-1, 6.1.106-1, 0
Debian:11linux5.10.158-2, 5.10.218-1, 5.10.221-1
Debian:13linux0, 0
Debian:14linux0, 0
Debian:11linux-6.16.1.106-3, 6.1.106-3, 6.1.112-1

Timeline

  • May 1, 2024 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›