retired/CVE-2024-1085


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: netfilter: nf_tables: check if catch-all set element is active in next generation
References:
 https://kernel.dance/b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7
Notes:
 carnil> Fixed for 6.7.y in 6.7.2 and for 6.6.y in 6.6.14.
 carnil> Commit fixes aaa31047a6d2 ("netfilter: nftables: add catch-all
 carnil> set element support") in 5.13-rc1.
Bugs:
upstream: released (6.8-rc1) [b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7]
6.1-upstream-stable: released (6.1.75) [a372f1d01bc11aa85773a02353cd01aaf16dc18e]
5.10-upstream-stable: N/A "Vulnerable code not present"
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.6.15-1)
6.1-bookworm-security: released (6.1.76-1)
5.10-bullseye-security: N/A "Vulnerable code not present"
4.19-buster-security: N/A "Vulnerable code not present"