AZL-35475

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-35475.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-35475

Upstream

CVE-2024-26581

Published

2024-02-20T13:15:09Z

Modified

2026-04-01T05:12:09.598659Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

CVE-2024-26581 affecting package hyperv-daemons for versions less than 6.6.22.1-2

Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nftsetrbtree: skip end interval element from gc

rbtree lazy gc on insert might collect an end interval element that has been just added in this transactions, skip end interval elements that are not yet active.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-26581

Affected packages

Azure Linux:3 / hyperv-daemons

Package

Name: hyperv-daemons
Purl: pkg:rpm/azure-linux/hyperv-daemons

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.6.22.1-2

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-35475.json"