CVE-2024-26924

netfilter: nft_set_pipapo: do not free live element

References

Notes

 carnil> Introduced in 3c4287f62044 ("nf_tables: Add set type for arbitrary
 carnil> concatenation of ranges"). Vulnerable versions: 5.6-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.216) [e3b887a9c11caf8357a821260e095f2a694a34f2]
6.1-bookworm-security released (6.1.90-1)
6.1-upstream-stable released (6.1.88) [41d8fdf3afaff312e17466e4ab732937738d5644]
6.6-upstream-stable released (6.6.29) [ebf7c9746f073035ee26209e38c3a1170f7b349a]
6.8-upstream-stable released (6.8.8) [14b001ba221136c15f894577253e8db535b99487]
sid needed
upstream released (6.9-rc5) [3cfc9ec039af60dbd8965ae085b2c2ccdcfbe1cc]