CVE-2024-42269

MEDIUM EPSS 13.2%
Published Aug 17, 20241y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Aug 17, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix potential null-ptr-deref in ip6table_nat_table_init(). ip6table_nat_table_init() accesses net->gen->ptr[ip6table_nat_net_ops.id], but the function is exposed to user space before the entry is allocated via register_pernet_subsys(). Let's call register_pernet_subsys() before xt_register_template().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
13.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥5.15  –  <6.1.104
linuxlinux_kernel*≥6.2  –  <6.6.45
linuxlinux_kernel*≥6.7  –  <6.10.4
linuxlinux_kernel6.11any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/419ee6274c5153b89c4393c1946faa4c3cad4f9e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87dba44e9471b79b255d0736858a897332db9226
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91b6df6611b7edb28676c4f63f90c56c30d3e601
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c22921df777de5606f1047b1345b8d22ef1c0b34
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e85b9b6a87be4cb3710082038b677e97f2389003
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/419ee6274c5153b89c4393c1946faa4c3cad4f9e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87dba44e9471b79b255d0736858a897332db9226
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91b6df6611b7edb28676c4f63f90c56c30d3e601
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c22921df777de5606f1047b1345b8d22ef1c0b34
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e85b9b6a87be4cb3710082038b677e97f2389003
    Patch