CVE-2024-26925

netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path

References

https://cve.org/CVERecord/?id=CVE-2024-26925

Notes

 carnil> Introduced in 720344340fb9 ("netfilter: nf_tables: GC transaction race with
 carnil> abort path"). Vulnerable versions: 5.4.262 5.10.198 5.15.134 6.1.56 6.4.13 6.5.

Bugs

Status

Branch	Status
4.19-buster-security	N/A "Vulnerable code not present"
4.19-upstream-stable	N/A "Vulnerable code not present"
5.10-bullseye-security	released (5.10.216-1)
5.10-upstream-stable	released (5.10.215) [2cee2ff7f8cce12a63a0a23ffe27f08d99541494]
6.1-bookworm-security	released (6.1.90-1)
6.1-upstream-stable	released (6.1.86) [8d3a58af50e46167b6f1db47adadad03c0045dae]
6.6-upstream-stable	released (6.6.26) [8038ee3c3e5b59bcd78467686db5270c68544e30]
6.8-upstream-stable	released (6.8.5) [a34ba4bdeec0c3b629160497594908dc820110f1]
sid	needed
upstream	released (6.9-rc3) [0d459e2ffb541841714839e8228b845458ed3b27]