CVE-2024-40993

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a buffer overflow in the netfilter component of the Linux kernel. This can be exploited to cause a denial of service. The problem occurs when destroying all sets, and either the pernet exit phase or a "destroy all sets command" from userspace is executed. The patch adds a required check to rcu dereference protected() in ip set dereference() to address this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.