kernel CVE-2024-27397

Moderate

rpkelly published GHSA-584q-9jw4-w3gx

Sep 13, 2024

Package

kernel-5.10 (bottlerocket)

Affected versions

< 1.22.0

Patched versions

1.22.0

kernel-5.15 (bottlerocket)

< 1.22.0

1.22.0

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: use timestamp to check for set element timeout

Severity

Moderate

/ 10

CVSS v3 base metrics

Attack vector

Local

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H