Buffer Initialization Issue in Linux Kernel Netfilter Leading to Set Matching Errors
CVE-2024-57947

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
23 January 2025

What is CVE-2024-57947?

A vulnerability in the Linux kernel's Netfilter component affects the initial buffer initialization for pipapo map fills. The flaw occurs when the initial buffer is not properly set, leading to potential incorrect matching results when the size of the first element in a set is smaller than the maximum allowed size. This misconfiguration can cause improper results to propagate during subsequent rounds of matching, potentially compromising data integrity. A follow-up patch has been introduced to improve the self-test script, ensuring more robust validation of this functionality.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 3c4287f62044a90e73a561aa05fc46e62da173da < 77bf0c4ab928ca4c9a99311f4f70ba0c17fecba9

Linux 3c4287f62044a90e73a561aa05fc46e62da173da < 957a4d1c4c5849e4515c9fb4db21bf85318103dc

Linux 3c4287f62044a90e73a561aa05fc46e62da173da < 9625c46ce6fd4f922595a4b32b1de5066d70464f

References

https://git.kernel.org/stable/c/77bf0c4ab928ca4c9a99311f4...
https://git.kernel.org/stable/c/957a4d1c4c5849e4515c9fb4d...
https://git.kernel.org/stable/c/9625c46ce6fd4f922595a4b32...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.