CVE-2024-36270

Source
https://cve.org/CVERecord?id=CVE-2024-36270
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36270.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-36270
Downstream
Related
Published
2024-06-21T10:18:07.026Z
Modified
2026-06-18T03:54:43.949843009Z
Summary
netfilter: tproxy: bail out if IP has been disabled on the device
Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: tproxy: bail out if IP has been disabled on the device

syzbot reports: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN PTI KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] [..] RIP: 0010:nftproxyladdr4+0xb7/0x340 net/ipv4/netfilter/nftproxyipv4.c:62 Call Trace: nfttproxyevalv4 net/netfilter/nfttproxy.c:56 [inline] nfttproxyeval+0xa9a/0x1a00 net/netfilter/nft_tproxy.c:168

_indevgetrcu() can return NULL, so check for this.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36270.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
cc6eb433856983e91071469c4ce57accb6947ccb
Fixed
10f0af5234dafd03d2b75233428ec3f11cf7e43d
Fixed
07eeedafc59c45fe5de43958128542be3784764c
Fixed
6fe5af4ff06db3d4d80e07a19356640428159f03
Fixed
caf3a8afb5ea00db6d5398adf148d5534615fd80
Fixed
570b4c52096e62fda562448f5760fd0ff06110f0
Fixed
819bfeca16eb9ad647ddcae25e7e12c30612147c
Fixed
21a673bddc8fd4873c370caf9ae70ffc6d47e8d3

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36270.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.37
Fixed
5.4.278
Type
ECOSYSTEM
Events
Introduced
5.5.0
Fixed
5.10.219
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.161
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.93
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.33
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.9.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36270.json"