CVE-2024-41184 Information

Description

In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1 an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.

Reference

https://github.com/acassen/keepalived/issues/2447#issuecomment-2231329734