CVE-2024-42070
Published: Jul 29, 2024
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers register store validation for NFT_DATA_VALUE is conditional, however, the datatype is always either NFT_DATA_VALUE or NFT_DATA_VERDICT. This only requires a new helper function to infer the register type from the set datatype so this conditional check can be removed. Otherwise, pointer to chain object can be leaked through the registers.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 96518518cc417bb0a8c80b9fb736202e28acdf96 - < 40188a25a9847dbeb7ec67517174a835a677752faffected 96518518cc417bb0a8c80b9fb736202e28acdf96 - < 23752737c6a618e994f9a310ec2568881a6b49c4affected 96518518cc417bb0a8c80b9fb736202e28acdf96 - < 5d43d789b57943720dca4181a05f6477362b94cfaffected 96518518cc417bb0a8c80b9fb736202e28acdf96 - < 461302e07f49687ffe7d105fa0a330c07c7646d8affected 96518518cc417bb0a8c80b9fb736202e28acdf96 - < efb27ad05949403848f487823b597ed67060e007+3 more versions |
Linux | Linux | affected 3.13unaffected 0 - < 3.13unaffected 4.19.317 - <= 4.19.*unaffected 5.4.279 - <= 5.4.*unaffected 5.10.221 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now