摘要:
In the Linux kernel, the following vulnerability has been resolved:netfilter: flowtable: validate pppoe headerEnsure there is sufficient room to access the protocol field of thePPPoe header. Validate it once before the flowtable lookup, then use ahelper function to access protocol field.
安全等级: Low
公告ID: KylinSec-SA-2024-2771
发布日期: 2024年6月19日
关联CVE: CVE-2024-27016
In the Linux kernel, the following vulnerability has been resolved:netfilter: flowtable: validate pppoe headerEnsure there is sufficient room to access the protocol field of thePPPoe header. Validate it once before the flowtable lookup, then use ahelper function to access protocol field.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2024-27016 | KY3.4-5A | kernel | Unaffected |
| CVE-2024-27016 | KY3.5.2 | kernel | Unaffected |
| CVE-2024-27016 | V6 | kernel | Unaffected |
