Bug 1222335 (CVE-2024-26668) - VUL-0: CVE-2024-26668: kernel: netfilter: nft_limit: reject configurations that cause integer overflow
Summary: VUL-0: CVE-2024-26668: kernel: netfilter: nft_limit: reject configurations th...
Status: NEW
Alias: CVE-2024-26668
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Michal Kubeček
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/399976/
Whiteboard: CVSSv3.1:SUSE:CVE-2024-26668:5.5:(AV:...
Keywords:
Depends on:
Blocks:
 
Reported: 2024-04-04 15:24 UTC by SMASH SMASH
Modified: 2024-07-04 09:24 UTC (History)
4 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description SMASH SMASH 2024-04-04 15:24:10 UTC 
In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_limit: reject configurations that cause integer overflow

Reject bogus configs where internal token counter wraps around.
This only occurs with very very large requests, such as 17gbyte/s.

Its better to reject this rather than having incorrect ratelimit.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-26668
https://git.kernel.org/stable/c/bc6e242bb74e2ae616bfd2b250682b738e781c9b
https://git.kernel.org/stable/c/c9d9eb9c53d37cdebbad56b91e40baf42d5a97aa
https://www.cve.org/CVERecord?id=CVE-2024-26668
https://git.kernel.org/stable/c/00c2c29aa36d1d1827c51a3720e9f893a22c7c6a
https://git.kernel.org/stable/c/79d4efd75e7dbecd855a3b8a63e65f7265f466e1
https://git.kernel.org/stable/c/9882495d02ecc490604f747437a40626dc9160d0
https://bugzilla.redhat.com/show_bug.cgi?id=2272797