Linux Kernel Netfilter Flaw Enables Privilege Escalation
gbhackersA critical vulnerability in the Linux kernel’s netfilter subsystem has been discovered that allows local attackers to escalate privileges through an out-of-bounds write condition.
The flaw, identified as CVE-2024-53141, affects the ipset bitmap functionality and could enable unprivileged users to gain root access on vulnerable systems.
| CVE ID | CVE-2024-53141 |
| Affected Versions | Up to commit 041bd1e4 in Torvalds’s Linux kernel repository, including kernel versions up to 6.12.2 |
| Vendor Response | Linux kernel developers released a patch addressing the vulnerability |
| Patch Commit | 35f56c554eb1b56b77b3cf197a6b00922d49033d |
Technical Overview
The vulnerability resides within the bitmap:ip set type implementation in the Linux kernel’s ipset subsystem, which is used for efficient IP address management in conjunction with iptables and nftables.
The flaw occurs in the bitmap_ip_uadt function located in net/netfilter/ipset/ip_set_bitmap_ip.c.
When processing CIDR (Classless Inter-Domain Routing) notation for IP ranges, the kernel fails to perform proper bounds checking.
Specifically ...
Copyright of this story solely belongs to gbhackers . To see the full text click HERE