CVE-2024-27020
- Source
- https://cve.org/CVERecord?id=CVE-2024-27020
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-27020.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-27020
- Downstream
- Related
- Published
- 2024-05-01T05:30:15.908Z
- Modified
- 2026-05-28T03:52:57.478197158Z
- Severity
-
- 7.0 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: Fix potential data-race in _nftexprtypeget()
nftunregisterexpr() can concurrent with __nftexprtype_get(), and there is not any protection when iterate over nftablesexpressions list in _nftexprtypeget(). Therefore, there is potential data-race of nftablesexpressions list entry.
Use listforeachentryrcu() to iterate over nftablesexpressions list in __nftexprtypeget(), and use rcureadlock() in the caller nftexprtypeget() to protect the entire type query process.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/27xxx/CVE-2024-27020.json", "cna_assigner": "Linux" }- References
-
- https://cert-portal.siemens.com/productcert/html/ssa-265688.html
- https://cert-portal.siemens.com/productcert/html/ssa-398330.html
- https://cert-portal.siemens.com/productcert/html/ssa-613116.html
- https://git.kernel.org/stable/c/01f1a678b05ade4b1248019c2dcca773aebbeb7f
- https://git.kernel.org/stable/c/0b6de00206adbbfc6373b3ae38d2a6f197987907
- https://git.kernel.org/stable/c/8d56bad42ac4c43c6c72ddd6a654a2628bf839c5
- https://git.kernel.org/stable/c/934e66e231cff2b18faa2c8aad0b8cec13957e05
- https://git.kernel.org/stable/c/939109c0a8e2a006a6cc8209e262d25065f4403a
- https://git.kernel.org/stable/c/a9ebf340d123ae12582210407f879d6a5a1bc25b
- https://git.kernel.org/stable/c/b38a133d37fa421c8447b383d788c9cc6f5cb34c
- https://git.kernel.org/stable/c/f969eb84ce482331a991079ab7a5c4dc3b7f89bf
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EZ6PJW7VOZ224TD7N4JZNU6KV32ZJ53/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAMSOZXJEPUOXW33WZYWCVAY7Z5S7OOY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GCBZZEC7L7KTWWAS2NLJK6SO3IZIL4WW/
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/27xxx/CVE-2024-27020.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-27020
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedef1f7df9170dbd875ce198ba84e6ab80f6fc139eFixed939109c0a8e2a006a6cc8209e262d25065f4403aFixedb38a133d37fa421c8447b383d788c9cc6f5cb34cFixed934e66e231cff2b18faa2c8aad0b8cec13957e05Fixed0b6de00206adbbfc6373b3ae38d2a6f197987907Fixed8d56bad42ac4c43c6c72ddd6a654a2628bf839c5Fixeda9ebf340d123ae12582210407f879d6a5a1bc25bFixed01f1a678b05ade4b1248019c2dcca773aebbeb7fFixedf969eb84ce482331a991079ab7a5c4dc3b7f89bf
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced3.13.0Fixed4.19.313
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.275
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.216
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.157
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.88
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.29
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.8.8