In the Linux kernel, the following vulnerability has been resolved: wireguard: netlink: access device through ctx instead of peer The previous commit fixed a bug that led to a NULL peer->device being dereferenced. It's actually easier and faster performance-wise to instead get the device from ctx->wg. This semantically makes more sense too, since ctx->wg->peer_allowedips.seq is compared with ctx->allowedips_seq, basing them both in ctx. This also acts as a defence in depth provision against freed peers.
History

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
References

Wed, 13 Nov 2024 02:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:9
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux

Tue, 05 Nov 2024 10:45:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-01T05:18:29.902Z

Updated: 2024-11-07T15:00:58.528Z

Reserved: 2024-02-19T14:20:24.198Z

Link: CVE-2024-26950

cve-icon Vulnrichment

Updated: 2024-08-02T00:21:05.839Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-01T06:15:11.080

Modified: 2024-11-21T09:03:28.153

Link: CVE-2024-26950

cve-icon Redhat

Severity : Low

Publid Date: 2024-05-01T00:00:00Z

Links: CVE-2024-26950 - Bugzilla