Medium severity5.5NVD Advisory· Published Aug 30, 2024· Updated May 12, 2026
CVE-2024-44944
CVE-2024-44944
Description
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ctnetlink: use helper function to calculate expect ID
Delete expectation path is missing a call to the nf_expect_get_id() helper function to calculate the expectation ID, otherwise LSB of the expectation object address is leaked to userspace.
Affected products
1- Linux/Linuxv5Range: 5.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- cert-portal.siemens.com/productcert/html/ssa-265688.htmlnvd
- cert-portal.siemens.com/productcert/html/ssa-355557.htmlnvd
- cert-portal.siemens.com/productcert/html/ssa-398330.htmlnvd
- cert-portal.siemens.com/productcert/html/ssa-613116.htmlnvd
- lists.debian.org/debian-lts-announce/2024/10/msg00003.htmlnvd
- lists.debian.org/debian-lts-announce/2025/01/msg00001.htmlnvd
- www.zerodayinitiative.com/advisories/ZDI-24-1182/nvd
News mentions
0No linked articles in our index yet.