CVE-2024-26668 : In the Linux kernel, the following vulnerability has been resolved: netfilter:

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_limit: reject configurations that cause integer overflow Reject bogus configs where internal token counter wraps around. This only occurs with very very large requests, such as 17gbyte/s. Its better to reject this rather than having incorrect ratelimit.

Published 2024-04-02 07:15:44

Updated 2025-03-17 15:04:22

Source Linux

View at NVD, CVE.org

Vulnerability category: Overflow

Products affected by CVE-2024-26668

Linux » Linux Kernel
Versions from including (>=) 5.16 and before (<) 6.1.76
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.7 and before (<) 6.7.3
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2 and before (<) 6.6.15
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 4.3 and before (<) 5.15.149
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC1
cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2024-26668

EPSS FAQ

0.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 1 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-26668

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST	2025-03-17
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2024-26668

CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2024-26668

https://git.kernel.org/stable/c/9882495d02ecc490604f747437a40626dc9160d0

netfilter: nft_limit: reject configurations that cause integer overflow - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/c9d9eb9c53d37cdebbad56b91e40baf42d5a97aa

netfilter: nft_limit: reject configurations that cause integer overflow - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/00c2c29aa36d1d1827c51a3720e9f893a22c7c6a

netfilter: nft_limit: reject configurations that cause integer overflow - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/79d4efd75e7dbecd855a3b8a63e65f7265f466e1

netfilter: nft_limit: reject configurations that cause integer overflow - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/bc6e242bb74e2ae616bfd2b250682b738e781c9b

netfilter: nft_limit: reject configurations that cause integer overflow - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2024-26668

Products affected by CVE-2024-26668

Exploit prediction scoring system (EPSS) score for CVE-2024-26668

CVSS scores for CVE-2024-26668

CWE ids for CVE-2024-26668

References for CVE-2024-26668