CVE-2024-40993

netfilter: ipset: Fix suspicious rcu_dereference_protected()

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix suspicious rcu_dereference_protected() When destroying all sets, we are either in pernet exit phase or are executing a "destroy all sets command" from userspace. The latter was taken into account in ip_set_dereference() (nfnetlink mutex is held), but the former was not. The patch adds the required check to rcu_dereference_protected() in ip_set_dereference().

N/A
CVSS
Severity:
EPSS 0.26%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/3799d02ae4208af08e81310770d8754863a246a1
https://git.kernel.org/stable/c/72d9611968867cc4c5509e7708b1507d692b797a
https://git.kernel.org/stable/c/523bed6489e089dd8040e72453fb79da47b144c2
https://git.kernel.org/stable/c/788d585e62f487bc4536d454937f737b70d39a33
https://git.kernel.org/stable/c/94dd411c18d7fff9e411555d5c662d29416501e4
https://git.kernel.org/stable/c/3fc09e1ca854bc234e007a56e0f7431f5e2defb5
https://git.kernel.org/stable/c/8ecd06277a7664f4ef018abae3abd3451d64e7a6

Frequently Asked Questions

What is the severity of CVE-2024-40993?
CVE-2024-40993 has not yet been assigned a CVSS score.
How to fix CVE-2024-40993?
To fix CVE-2024-40993, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-40993 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-40993 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-40993?
CVE-2024-40993 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.