CVE - CVE-2024-53141

CVE-ID
CVE-2024-53141	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmap_ip_uadt When tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists, the values of ip and ip_to are slightly swapped. Therefore, the range check for ip should be done later, but this part is missing and it seems that the vulnerability occurs. So we should add missing range checks and remove unnecessary range checks.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/15794835378ed56fb9bacc6a5dd3b9f33520604e URL:https://git.kernel.org/stable/c/15794835378ed56fb9bacc6a5dd3b9f33520604e MISC:https://git.kernel.org/stable/c/2e151b8ca31607d14fddc4ad0f14da0893e1a7c7 URL:https://git.kernel.org/stable/c/2e151b8ca31607d14fddc4ad0f14da0893e1a7c7 MISC:https://git.kernel.org/stable/c/35f56c554eb1b56b77b3cf197a6b00922d49033d URL:https://git.kernel.org/stable/c/35f56c554eb1b56b77b3cf197a6b00922d49033d MISC:https://git.kernel.org/stable/c/3c20b5948f119ae61ee35ad8584d666020c91581 URL:https://git.kernel.org/stable/c/3c20b5948f119ae61ee35ad8584d666020c91581 MISC:https://git.kernel.org/stable/c/591efa494a1cf649f50a35def649c43ae984cd03 URL:https://git.kernel.org/stable/c/591efa494a1cf649f50a35def649c43ae984cd03 MISC:https://git.kernel.org/stable/c/78b0f2028f1043227a8eb0c41944027fc6a04596 URL:https://git.kernel.org/stable/c/78b0f2028f1043227a8eb0c41944027fc6a04596 MISC:https://git.kernel.org/stable/c/7ffef5e5d5eeecd9687204a5ec2d863752aafb7e URL:https://git.kernel.org/stable/c/7ffef5e5d5eeecd9687204a5ec2d863752aafb7e MISC:https://git.kernel.org/stable/c/856023ef032d824309abd5c747241dffa33aae8c URL:https://git.kernel.org/stable/c/856023ef032d824309abd5c747241dffa33aae8c MISC:https://git.kernel.org/stable/c/e67471437ae9083fa73fa67eee1573fec1b7c8cf URL:https://git.kernel.org/stable/c/e67471437ae9083fa73fa67eee1573fec1b7c8cf
Assigning CNA
kernel.org
Date Record Created
20241119	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20241119)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2025, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.