{"id":"CVE-2024-26809","summary":"netfilter: nft_set_pipapo: release elements in clone only from destroy path","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_pipapo: release elements in clone only from destroy path\n\nClone already always provides a current view of the lookup table, use it\nto destroy the set, otherwise it is possible to destroy elements twice.\n\nThis fix requires:\n\n 212ed75dc5fb (\"netfilter: nf_tables: integrate pipapo into commit protocol\")\n\nwhich came after:\n\n 9827a0e6e23b (\"netfilter: nft_set_pipapo: release elements in clone from abort path\").","modified":"2026-04-16T04:38:00.638555101Z","published":"2024-04-04T09:51:51.245Z","related":["SUSE-SU-2024:3194-1","SUSE-SU-2024:3195-1","SUSE-SU-2024:3383-1","SUSE-SU-2025:02601-1","SUSE-SU-2025:02632-1","SUSE-SU-2025:02691-1","SUSE-SU-2025:20044-1","SUSE-SU-2025:20047-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26809.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/362508506bf545e9ce18c72a2c48dcbfb891ab9c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5ad233dc731ab64cdc47b84a5c1f78fff6c024af"},{"type":"WEB","url":"https://git.kernel.org/stable/c/821e28d5b506e6a73ccc367ff792bd894050d48b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9384b4d85c46ce839f51af01374062ce6318b2f2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b0e256f3dd2ba6532f37c5c22e07cb07a36031ee"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b36b83297ff4910dfc8705402c8abffd4bbf8144"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ff90050771412b91e928093ccd8736ae680063c2"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26809.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26809"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"4a6430b99f67842617c7208ca55a411e903ba03a"},{"fixed":"b36b83297ff4910dfc8705402c8abffd4bbf8144"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"5ccecafc728b0df48263d5ac198220bcd79830bc"},{"fixed":"362508506bf545e9ce18c72a2c48dcbfb891ab9c"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"9827a0e6e23bf43003cd3d5b7fb11baf59a35e1e"},{"fixed":"5ad233dc731ab64cdc47b84a5c1f78fff6c024af"},{"fixed":"ff90050771412b91e928093ccd8736ae680063c2"},{"fixed":"821e28d5b506e6a73ccc367ff792bd894050d48b"},{"fixed":"9384b4d85c46ce839f51af01374062ce6318b2f2"},{"fixed":"b0e256f3dd2ba6532f37c5c22e07cb07a36031ee"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"d2b18d110685ce46ca1633b8ec586c685e243a51"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26809.json"}}],"schema_version":"1.7.5"}