CVE-2024-26951

wireguard: netlink: check for dangling peer via is_dead instead of empty list

References

Notes

 carnil> Introduced in e7096c131e51 ("net: WireGuard secure network tunnel"). Vulnerable
 carnil> versions: 5.6-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security released (5.10.216-1)
5.10-upstream-stable released (5.10.215) [f52be46e3e6ecefc2539119784324f0cbc09620a]
6.1-bookworm-security released (6.1.85-1)
6.1-upstream-stable released (6.1.84) [b7cea3a9af0853fdbb1b16633a458f991dde6aac]
6.6-upstream-stable released (6.6.24) [13d107794304306164481d31ce33f8fdb25a9c04]
6.8-upstream-stable released (6.8.3) [302b2dfc013baca3dea7ceda383930d9297d231d]
sid released (6.7.12-1)
upstream released (6.9-rc1) [55b6c738673871c9b0edae05d0c97995c1ff08c4]