PT-2024-4116 · Linux+6 · Linux Kernel+6

Jianbo Liu

·

Published

2024-04-11

·

Updated

2025-09-29

·

CVE-2024-27018

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.8.0
Description The vulnerability is related to the netfilter component of the Linux kernel, specifically the br netfilter module. It occurs when the bridge device is in promiscuous mode and packets directed to the taps follow the bridge input hook path. This can lead to a situation where cloned packets reach the br netfilter input hook, confirming the conntrack object. The issue is resolved by adding a workaround to reset conntrack for these packets and annotating the packet with a bit from BR INPUT SKB CB to indicate it has reached the input hook.
Recommendations To resolve the issue, update the Linux kernel to version 6.8.0 or later. If updating is not possible, consider disabling the br netfilter module or restricting its use as a temporary workaround until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-19

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-11524
ALT-PU-2024-13979
ALT-PU-2024-14046
AZL-42031
AZL-42252
AZL-46027
BDU:2024-04582
CVE-2024-27018
DSA-5680-1
MGASA-2024-0263
MGASA-2024-0266
OPENSUSE-SU-2025_01614-1
OPENSUSE-SU-2025_01707-1
SUSE-SU-2025:01614-1
SUSE-SU-2025:01707-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01964-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:01972-1
SUSE-SU-2025:20343-1
SUSE-SU-2025:20344-1
SUSE-SU-2025:20354-1
SUSE-SU-2025:20355-1
SUSE-SU-2025_01614-1
SUSE-SU-2025_01707-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01964-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_01972-1
USN-6893-1
USN-6893-2
USN-6893-3
USN-6898-1
USN-6898-2
USN-6898-3
USN-6898-4
USN-6917-1
USN-6918-1
USN-6927-1
USN-7019-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu