{"id":"CVE-2024-35897","summary":"netfilter: nf_tables: discard table flag update with pending basechain deletion","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: discard table flag update with pending basechain deletion\n\nHook unregistration is deferred to the commit phase, same occurs with\nhook updates triggered by the table dormant flag. When both commands are\ncombined, this results in deleting a basechain while leaving its hook\nstill registered in the core.","modified":"2026-03-20T12:36:43.565264Z","published":"2024-05-19T08:34:51.799Z","related":["ALSA-2024:5928","SUSE-SU-2024:3190-1","SUSE-SU-2024:3194-1","SUSE-SU-2024:3195-1","SUSE-SU-2024:3209-1","SUSE-SU-2024:3383-1","SUSE-SU-2024:3483-1","SUSE-SU-2025:20044-1","SUSE-SU-2025:20047-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/35xxx/CVE-2024-35897.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/1bc83a019bbe268be3526406245ec28c2458a518"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2aeb805a1bcd5f27c8c0d1a9d4d653f16d1506f4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6cbbe1ba76ee7e674a86abd43009b083a45838cb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7f609f630951b624348373cef99991ce08831927"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9627fd0c6ea1c446741a33e67bc5709c59923827"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9a3b90904d8a072287480eed4c3ece4b99d64f78"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b58d0ac35f6d75ec1db8650a29dfd6f292c11362"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e75faf01e22ec7dc671640fa0e0968964fafd2fc"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/35xxx/CVE-2024-35897.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-35897"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bf8083bbf8fa202e6e5316bbd99759ab82bfe7a3"},{"fixed":"e75faf01e22ec7dc671640fa0e0968964fafd2fc"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e10f661adc556c4969c70ddaddf238bffdaf1e87"},{"fixed":"9a3b90904d8a072287480eed4c3ece4b99d64f78"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"d9c4da8cb74e8ee6e58a064a3573aa37acf6c935"},{"fixed":"b58d0ac35f6d75ec1db8650a29dfd6f292c11362"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"179d9ba5559a756f4322583388b3213fe4e391b0"},{"fixed":"6cbbe1ba76ee7e674a86abd43009b083a45838cb"},{"fixed":"2aeb805a1bcd5f27c8c0d1a9d4d653f16d1506f4"},{"fixed":"9627fd0c6ea1c446741a33e67bc5709c59923827"},{"fixed":"7f609f630951b624348373cef99991ce08831927"},{"fixed":"1bc83a019bbe268be3526406245ec28c2458a518"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-35897.json"}}],"schema_version":"1.7.5"}