CVE-2024-39504 Information

Description

In the Linux kernel the following vulnerability has been resolved:

netfilter: nft_inner: validate mandatory meta and payload

Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression otherwise NULL pointer dereference is possible from userspace.

Reference

https://git.kernel.org/stable/c/b30669fdea0ca03aa22995e6c99f7e7d9dee89ff https://git.kernel.org/stable/c/39323f54cad29602917848346c71b087da92a19d https://git.kernel.org/stable/c/c4ab9da85b9df3692f861512fe6c9812f38b7471