← Back to CVEs
CVE-2024-1086
HIGHCISA KEV7.8
Description
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT. We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.
CVE Details
CVSS v3.1 Score7.8
SeverityHIGH
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack VectorLOCAL
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published1/31/2024
Last Modified10/27/2025
Sourcekev
Honeypot Sightings0
CISA KEV
VendorLinux
ProductKernel
Vulnerability NameLinux Kernel Use-After-Free Vulnerability
KEV Date Added2024-05-30
Remediation Due Date2024-06-20
Ransomware UseKnown
Affected Products
debian:debian_linuxfedoraproject:fedoralinux:linux_kernelnetapp:500fnetapp:500f_firmwarenetapp:a250netapp:a250_firmwarenetapp:c250netapp:c250_firmwareredhat:enterprise_linux_desktopredhat:enterprise_linux_for_ibm_z_systemsredhat:enterprise_linux_for_power_big_endianredhat:enterprise_linux_for_power_little_endianredhat:enterprise_linux_serverredhat:enterprise_linux_workstation
Weaknesses (CWE)
CWE-416CWE-416
References
http://www.openwall.com/lists/oss-security/2024/04/10/22(cve-coordination@google.com)
http://www.openwall.com/lists/oss-security/2024/04/10/23(cve-coordination@google.com)
http://www.openwall.com/lists/oss-security/2024/04/14/1(cve-coordination@google.com)
http://www.openwall.com/lists/oss-security/2024/04/15/2(cve-coordination@google.com)
http://www.openwall.com/lists/oss-security/2024/04/17/5(cve-coordination@google.com)
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660(cve-coordination@google.com)
https://github.com/Notselwyn/CVE-2024-1086(cve-coordination@google.com)
https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660(cve-coordination@google.com)
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html(cve-coordination@google.com)
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html(cve-coordination@google.com)
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LSPIOMIJYTLZB6QKPQVVAYSUETUWKPF/(cve-coordination@google.com)
https://news.ycombinator.com/item?id=39828424(cve-coordination@google.com)
https://pwning.tech/nftables/(cve-coordination@google.com)
https://security.netapp.com/advisory/ntap-20240614-0009/(cve-coordination@google.com)
http://www.openwall.com/lists/oss-security/2024/04/10/22(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/10/23(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/14/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/15/2(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2024/04/17/5(af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/Notselwyn/CVE-2024-1086(af854a3a-2127-422b-91ae-364da2661108)
https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660(af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html(af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html(af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LSPIOMIJYTLZB6QKPQVVAYSUETUWKPF/(af854a3a-2127-422b-91ae-364da2661108)
https://news.ycombinator.com/item?id=39828424(af854a3a-2127-422b-91ae-364da2661108)
https://pwning.tech/nftables/(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20240614-0009/(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-1086(134c704f-9b21-4f2e-91b3-4a467353bcc0)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.