CVE-2024-26851

netfilter: nf_conntrack_h323: Add protection for bmp length out of range

References

https://cve.org/CVERecord/?id=CVE-2024-26851

Notes

 carnil> Introduced in 5e35941d9901 ("[NETFILTER]: Add H.323 conntrack/NAT helper").
 carnil> Vulnerable versions: 2.6.17-rc1.

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	released (4.19.310) [98db42191329c679f4ca52bec0b319689e1ad8cb]
5.10-bullseye-security	released (5.10.216-1)
5.10-upstream-stable	released (5.10.213) [ccd1108b16ab572d9bf635586b0925635dbd6bbc]
6.1-bookworm-security	released (6.1.82-1)
6.1-upstream-stable	released (6.1.82) [39001e3c42000e7c2038717af0d33c32319ad591]
6.6-upstream-stable	released (6.6.22) [014a807f1cc9c9d5173c1cd935835553b00d211c]
6.8-upstream-stable	released (6.8) [767146637efc528b5e3d31297df115e85a2fd362]
sid	released (6.7.12-1)
upstream	released (6.8) [767146637efc528b5e3d31297df115e85a2fd362]