use-after-free in netfilter: nf_tables (CVE-2024-1086) #shorts #breaking
CVE
This vulnerability is a use-after-free flaw in the netfilter: nf_tables of the Linux kernel. Discovered less than a month ago, it is categorized as a zero-day exploit, meaning it is being actively exploited before a patch was available. Predominantly targeting federal agencies, this vulnerability impacts Linux kernel versions ranging from 3.15 up to, but not including, 6.8. Attackers exploiting this vulnerability can achieve local privilege escalation, allowing them to execute commands with elevated permissions. This issue necessitates urgent attention from users and administrators who run the affected Linux versions.
Watch the full video on YouTube: CVE-2024-1086
Remediation and exploitation details
This chain involves the following actors
This following systems are involved
Attack entry point
Remediation actions
Exploitation actions
Related Content
NOTE: The following related content has not been vetted and may be unsafe.
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660
- https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LSPIOMIJYTLZB6QKPQVVAYSUETUWKPF/
- https://github.com/Notselwyn/CVE-2024-1086
- https://news.ycombinator.com/item?id=39828424
- https://pwning.tech/nftables/
- http://www.openwall.com/lists/oss-security/2024/04/15/2
- http://www.openwall.com/lists/oss-security/2024/04/10/23
- http://www.openwall.com/lists/oss-security/2024/04/10/22
- http://www.openwall.com/lists/oss-security/2024/04/14/1
- http://www.openwall.com/lists/oss-security/2024/04/17/5
- https://security.netapp.com/advisory/ntap-20240614-0009/
- https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html