AI description
CVE-2024-26809 is a vulnerability in the Linux kernel, specifically within the netfilter subsystem, which is responsible for network packet filtering. The vulnerability occurs in the `nft_set_pipapo` component and arises from releasing elements in a clone operation only from the destroy path. The core issue is that the clone operation already provides a current view of the lookup table. By using this view to destroy the set, it prevents the possibility of destroying elements twice, which could lead to memory corruption or other undefined behavior. The fix for this vulnerability requires specific patches to be applied to the kernel.
- Description
- In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: release elements in clone only from destroy path Clone already always provides a current view of the lookup table, use it to destroy the set, otherwise it is possible to destroy elements twice. This fix requires: 212ed75dc5fb ("netfilter: nf_tables: integrate pipapo into commit protocol") which came after: 9827a0e6e23b ("netfilter: nft_set_pipapo: release elements in clone from abort path").
- Source
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
- Hype score
- Not currently trending
Linuxカーネルのnftablesにおける二重解放の脆弱性CVE-2024-26809に対応するPoC(攻撃の概念実証コード)が公表された。nft_pipapo_destroy()の実装における不備。ヒープスプレー及びROPチェーンとの組み合わせでrootへの
@__kokumoto
12 May 2025
2083 Impressions
6 Retweets
27 Likes
4 Bookmarks
0 Replies
0 Quotes
CVE-2024-26809: Critical nftables Vulnerability in Linux Kernel Could Lead to Root Access https://t.co/sytmVFZmY6 A critical security flaw has been discovered in the Linux kernel's nftables subsystem, which is responsible for packet filtering in modern Linux distributions. Th
@f1tym1
12 May 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔥 PoC Exploit Released for Linux Kernel’s nftables Subsystem Vulnerability | Read more: https://t.co/5ktwmzmkhN A critical Proof-of-Concept (PoC) exploit has been released for a significant vulnerability in the Linux kernel’s nftables subsystem, tracked as CVE-2024-26809.
@The_Cyber_News
12 May 2025
487 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
🚨 Double Trouble: How #CVE-2024-26809 Exposes #Linux Systems to Local Privilege Escalation https://t.co/30IexlJTNU
@UndercodeNews
12 May 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 Double-free vulnerability in Linux nftables kernel (CVE-2024-26809) allows attackers to gain root privileges. #CyberSecurity #Linux https://t.co/xmzj5qEQWr https://t.co/lAWd1AuGYQ
@CyberHub_blog
12 May 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
PoC Released: CVE-2024-26809 Exploits nftables Double-Free to Achieve Root Shell https://t.co/yd1L3xNBls
@Dinosn
12 May 2025
3261 Impressions
6 Retweets
20 Likes
12 Bookmarks
0 Replies
0 Quotes
Linuxカーネルのnftablesサブシステム(net/netfilterモジュール)において、CVE-2024-26809として追跡される深刻な脆弱性が発見された。 これは、nft_pipapo_destroy()関数におけるダブルフリーの不具合で、特定条件下で同
@yousukezan
12 May 2025
1536 Impressions
0 Retweets
8 Likes
4 Bookmarks
0 Replies
0 Quotes
🗣️ PoC Released: CVE-2024-26809 Exploits nftables Double-Free to Achieve Root Shell https://t.co/aQSDECIx09
@fridaysecurity
12 May 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
PoC Released: CVE-2024-26809 Exploits nftables Double-Free to Achieve Root Shell https://t.co/q9upPy6eMe
@the_yellow_fall
12 May 2025
1428 Impressions
12 Retweets
13 Likes
6 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2025-3776 2 - CVE-2024-26809 3 - CVE-2025-46337 4 - CVE-2025-26529 5 - CVE-2025-32433 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
4 May 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[1day1line] CVE-2024-26809: Linux Kernel Netfilter Use-After-Free Leading to LPE Vulnerability https://t.co/VRDkQhkeAg This NetFilter LPE vulnerability was submitted to KernelCTF. It's quite a complex vulnerability...
@hackyboiz
3 May 2025
2205 Impressions
14 Retweets
61 Likes
16 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "22B07DEF-9858-4D7B-ACDE-078D5421F0D5",
"versionEndExcluding": "5.10.214",
"versionStartIncluding": "5.10.130"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C0EF0BE-4A28-471E-B665-E3CB7A66436C",
"versionEndExcluding": "5.15.153",
"versionStartIncluding": "5.15.54"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C0C1B61-8338-4B49-BB56-B33CD1C6BA3A",
"versionEndExcluding": "6.1.83",
"versionStartIncluding": "5.18.11"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E00814DC-0BA7-431A-9926-80FEB4A96C68",
"versionEndExcluding": "6.6.23",
"versionStartIncluding": "6.2"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B95D3A6-E162-47D5-ABFC-F3FA74FA7CFD",
"versionEndExcluding": "6.7.11",
"versionStartIncluding": "6.7"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "543A75FF-25B8-4046-A514-1EA8EDD87AB1",
"versionEndExcluding": "6.8.2",
"versionStartIncluding": "6.8"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
}
],
"operator": "OR"
}
]
}
]