CVE-2024-44944

netfilter: ctnetlink: use helper function to calculate expect ID

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

netfilter: ctnetlink: use helper function to calculate expect ID

Delete expectation path is missing a call to the nf_expect_get_id()
helper function to calculate the expectation ID, otherwise LSB of the
expectation object address is leaked to userspace.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-08-21 CVE Reserved
2024-08-30 CVE Published
2024-09-04 EPSS Updated
2024-11-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (16)

URL	Tag	Source
https://git.kernel.org/stable/c/7b115755fb9d3aff0ddcd18a5c4d83381362acce	Vuln. Introduced
https://git.kernel.org/stable/c/3c79107631db1f7fd32cf3f7368e4672004a3010	Vuln. Introduced
https://git.kernel.org/stable/c/3d8b3d0384f709126beef6b917b7e97c23f18e74	Vuln. Introduced
https://git.kernel.org/stable/c/36bbd861a402a8c5bd8f0365a5967d34cc492f09	Vuln. Introduced
https://git.kernel.org/stable/c/1922476beeeea46bebbe577215078736dd4231dc	Vuln. Introduced
https://git.kernel.org/stable/c/f862c13c3c926d3008b2c2bcc746ab813108dfbf	Vuln. Introduced
https://git.kernel.org/stable/c/b0a90cae081d7ee14eaa46524fb70f4e23ae8905	Vuln. Introduced
https://www.zerodayinitiative.com/advisories/ZDI-24-1182

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/66e7650dbbb8e236e781c670b167edc81e771450	2024-08-19
https://git.kernel.org/stable/c/64c0b8e64be8368617ef08dfc59a3160563a1435	2024-08-19
https://git.kernel.org/stable/c/eb4ca1a97e08ff5b920664ba292e576257e2d184	2024-08-19
https://git.kernel.org/stable/c/5e2c24f7b0911b15c29aefce760bcf770542fb61	2024-08-19
https://git.kernel.org/stable/c/24f407042cf90b0872de667460230d8d50c06c39	2024-08-03
https://git.kernel.org/stable/c/27662b46f2adaa52c1665a82af4b21c42c4337fd	2024-08-03
https://git.kernel.org/stable/c/74de442b8e12a207c07953ee068009a7701aff8f	2024-08-03
https://git.kernel.org/stable/c/782161895eb4ac45cf7cfa8db375bd4766cb8299	2024-07-17

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.44 < 4.19.320 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.44 < 4.19.320"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.4.282 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.4.282"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.10.224 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.10.224"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.15.165 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.15.165"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 6.1.103 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 6.1.103"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 6.6.44 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 6.6.44"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 6.10.3 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 6.10.3"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 6.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 6.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				3.16.72 Search vendor "Linux" for product "Linux Kernel" and version "3.16.72"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.4.191 Search vendor "Linux" for product "Linux Kernel" and version "4.4.191"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.9.190 Search vendor "Linux" for product "Linux Kernel" and version "4.9.190"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.14.120 Search vendor "Linux" for product "Linux Kernel" and version "4.14.120"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.0.17 Search vendor "Linux" for product "Linux Kernel" and version "5.0.17"		en		Affected