Thorsten Leemhuis (acct. 1/4) on Nostr: The #Linux #kernel CVE team released their first two CVEs: * CVE-2023-52433: ...

The #Linux #kernel CVE team released their first two CVEs:

* CVE-2023-52433: netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
https://lore.kernel.org/linux-cve-announce/2024022058-outsell-equator-e1c5@gregkh/

* CVE-2024-26581: netfilter: nft_set_rbtree: skip end interval element from gc
https://lore.kernel.org/linux-cve-announce/2024022024-uniquely-recluse-d893@gregkh/

For more details on the new #LinuxKernel CVE process, see https://docs.kernel.org/process/cve.html (recently added by https://git.kernel.org/torvalds/c/5928d411557ec5d53832cdd39fc443704a3e5b77 )

Screenshot from https://lore.kernel.org/linux-cve-announce/