CVE-2024-27017

netfilter: nft_set_pipapo: walk over current view on netlink dump

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: walk over current view on netlink dump The generation mask can be updated while netlink dump is in progress.
The pipapo set backend walk iterator cannot rely on it to infer what
view of the datastructure is to be used. Add notation to specify if user
wants to read/update the set. Based on patch from Florian Westphal.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: netfilter: nft_set_pipapo: recorra la vista actual en el volcado de netlink. La máscara de generación se puede actualizar mientras el volcado de netlink está en progreso. El iterador de recorrido backend del conjunto pipapo no puede confiar en él para inferir qué vista de la estructura de datos se va a utilizar. Agregue notación para especificar si el usuario desea leer/actualizar el conjunto. Basado en un parche de Florian Westphal.

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: walk over current view on netlink dump The generation mask can be updated while netlink dump is in progress. The pipapo set backend walk iterator cannot rely on it to infer what view of the datastructure is to be used. Add notation to specify if user wants to read/update the set. Based on patch from Florian Westphal.

Benedict SchlÃÂ¼ter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious #VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to expose sensitive information or possibly execute arbitrary code in the trusted execution environment. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

None

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

None

Integrity

Complete

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-19 CVE Reserved
2024-05-01 CVE Published
2025-05-04 CVE Updated
2025-08-16 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (13)

URL	Tag	Source
https://git.kernel.org/stable/c/2a90da8e0dd50f42e577988f4219f4f4cd3616b7	Vuln. Introduced
https://git.kernel.org/stable/c/45eb6944d0f55102229115de040ef3a48841434a	Vuln. Introduced
https://git.kernel.org/stable/c/0d836f917520300a8725a5dbdad4406438d0cead	Vuln. Introduced
https://git.kernel.org/stable/c/2b84e215f87443c74ac0aa7f76bb172d43a87033	Vuln. Introduced
https://git.kernel.org/stable/c/f661383b5f1aaac3fe121b91e04332944bc90193	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/ff89db14c63a827066446460e39226c0688ef786	2024-10-17
https://git.kernel.org/stable/c/ce9fef54c5ec9912a0c9a47bac3195cc41b14679	2024-10-17
https://git.kernel.org/stable/c/52735a010f37580b3a569a996f878fdd87425650	2024-09-30
https://git.kernel.org/stable/c/f24d8abc2bb8cbf31ec713336e402eafa8f42f60	2024-09-30
https://git.kernel.org/stable/c/721715655c72640567e8742567520c99801148ed	2024-04-27
https://git.kernel.org/stable/c/29b359cf6d95fd60730533f7f10464e95bd17c73	2024-04-11

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-27017	2025-02-19
https://bugzilla.redhat.com/show_bug.cgi?id=2278262	2025-02-19

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.186 < 5.10.227 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.186 < 5.10.227"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.119 < 5.15.168 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.119 < 5.15.168"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.36 < 6.1.112 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.36 < 6.1.112"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.4 < 6.6.53 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.4 < 6.6.53"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.4 < 6.8.8 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.4 < 6.8.8"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.4 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.4 < 6.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				6.3.10 Search vendor "Linux" for product "Linux Kernel" and version "6.3.10"		en		Affected