CVE-2024-35899

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.8.0

Description The vulnerability is related to a slab-use-after-free issue in the nf tables trans destroy work function. This issue can be triggered when an element is released via the destroy workqueue while the exit net path has already released the set used in the transaction. The vulnerability can be exploited to potentially elevate privileges in the system.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. Specifically, versions 6.8.0 and later should include the necessary patches to address this issue.

For Linux kernel versions prior to 6.8.0: As a temporary workaround, consider disabling the nf tables module until a patch is available. However, this may have significant implications for network filtering and security, so it should be carefully considered based on the specific use case and security requirements of the system.

At the moment, there is no information about other newer versions that contain a fix for this vulnerability.