CVE-2024-26581: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-26581 affects the Linux kernel's netfilter component, specifically in the nftsetrbtree functionality. The vulnerability was discovered in February 2024 and affects multiple versions of the Linux kernel, including versions up to 5.4.269, from 5.5.0 to 5.10.210, from 5.11.0 to 5.15.149, from 5.16.0 to 6.1.78, and various other versions (NVD).

The vulnerability involves the rbtree lazy garbage collection (gc) mechanism in the netfilter subsystem. Specifically, during insert operations, the gc might collect an end interval element that has been just added in the current transactions. The issue stems from not properly handling end interval elements that are not yet active. This was fixed by modifying the nftrbtreegc_elem function to skip end interval elements that are not yet active (Kernel Patch). The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (High), with the vector string AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability has been rated as High severity with a CVSS score of 7.8. It potentially affects the confidentiality, integrity, and availability of the system, requiring local access with low privileges and no user interaction for exploitation (NVD).

The vulnerability has been fixed in various Linux kernel versions. Multiple distributions have released patches, including Ubuntu with fixes for versions 5.15.0-105.115 for 22.04 LTS and 5.4.0-177.197 for 20.04 LTS (Ubuntu). Red Hat has also included fixes in their security updates (Red Hat). Users are advised to update their systems to the patched versions.