DEBIAN-CVE-2024-27403

DEBIAN-CVE-2024-27403 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_flow_offload: reset dst in route object after setting up flow dst is transferred to the flow object, route object does not own it anymore. Reset dst in route object, otherwise if flow_offload_add() fails, error path releases dst twice, leading to a refcount underflow.

Risk Scores

CVSS 3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Debian:14	linux	0, 0
Debian:11	linux	*, 6.8.11-1, 6.8.12-1
Debian:12	linux	6.1.27-1, 6.1.38-2, 6.1.38-2~bpo11+1
Debian:13	linux	0, 0

Timeline

May 17, 2024 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2024-27403 advisory

Open in Interactive Console →