CVE-2024-27403

EPSS 0.04 % (16^th)

Advisories 14

NVD Status Awaiting Analysis

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_flow_offload: reset dst in route object after setting up flow

dst is transferred to the flow object, route object does not own it
anymore. Reset dst in route object, otherwise if flow_offload_add()
fails, error path releases dst twice, leading to a refcount underflow.

CVE Status: PUBLISHED
NVD Status: Awaiting Analysis
CNA: kernel.org
Published Date: 2024-05-17 12:15:10
(4 months ago)
Updated Date: 2024-05-17 18:35:35
(4 months ago)