[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-26851":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":100,"related":101,"reserved_at":9,"published_at":113,"modified_at":114,"state":115,"summary":116,"references_raw":125,"kevs":174,"epss":175,"epss_history":178,"metrics":400,"affected":406},"CVE-2024-26851","In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_conntrack_h323: Add protection for bmp length out of range\n\nUBSAN load reports an exception of BRK#5515 SHIFT_ISSUE:Bitwise shifts\nthat are out of bounds for their data type.\n\nvmlinux   get_bitmap(b=75) + 712\n\u003Cnet/netfilter/nf_conntrack_h323_asn1.c:0>\nvmlinux   decode_seq(bs=0xFFFFFFD008037000, f=0xFFFFFFD008037018, level=134443100) + 1956\n\u003Cnet/netfilter/nf_conntrack_h323_asn1.c:592>\nvmlinux   decode_choice(base=0xFFFFFFD0080370F0, level=23843636) + 1216\n\u003Cnet/netfilter/nf_conntrack_h323_asn1.c:814>\nvmlinux   decode_seq(f=0xFFFFFFD0080371A8, level=134443500) + 812\n\u003Cnet/netfilter/nf_conntrack_h323_asn1.c:576>\nvmlinux   decode_choice(base=0xFFFFFFD008037280, level=0) + 1216\n\u003Cnet/netfilter/nf_conntrack_h323_asn1.c:814>\nvmlinux   DecodeRasMessage() + 304\n\u003Cnet/netfilter/nf_conntrack_h323_asn1.c:833>\nvmlinux   ras_help() + 684\n\u003Cnet/netfilter/nf_conntrack_h323_main.c:1728>\nvmlinux   nf_confirm() + 188\n\u003Cnet/netfilter/nf_conntrack_proto.c:137>\n\nDue to abnormal data in skb->data, the extension bitmap length\nexceeds 32 when decoding ras message then uses the length to make\na shift operation. It will change into negative after several loop.\nUBSAN load could detect a negative shift as an undefined behaviour\nand reports exception.\nSo we add the protection to avoid the length exceeding 32. Or else\nit will return out of range error and stop decoding.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98],{"_key":25},"SUSE-SU-2024:3189-1",{"_key":27},"SUSE-SU-2024:3251-1",{"_key":29},"SUSE-SU-2024:3252-1",{"_key":31},"SUSE-SU-2024:3190-1",{"_key":33},"SUSE-SU-2024:3194-1",{"_key":35},"SUSE-SU-2024:3195-1",{"_key":37},"SUSE-SU-2024:3209-1",{"_key":39},"SUSE-SU-2024:3383-1",{"_key":41},"SUSE-SU-2024:3483-1",{"_key":43},"DLA-3840-1",{"_key":45},"DLA-3842-1",{"_key":47},"DSA-5681-1",{"_key":49},"SUSE-SU-2025:20044-1",{"_key":51},"SUSE-SU-2025:20047-1",{"_key":53},"DEBIAN-CVE-2024-26851",{"_key":55},"RHSA-2024:6993",{"_key":57},"RHSA-2024:8870",{"_key":59},"RHSA-2025:3215",{"_key":61},"RHSA-2024:8856",{"_key":63},"UBUNTU-CVE-2024-26851",{"_key":65},"USN-7028-1",{"_key":67},"USN-7028-2",{"_key":69},"USN-7039-1",{"_key":71},"USN-6820-1",{"_key":73},"USN-6820-2",{"_key":75},"USN-6821-1",{"_key":77},"USN-6821-2",{"_key":79},"USN-6821-3",{"_key":81},"USN-6821-4",{"_key":83},"USN-6828-1",{"_key":85},"USN-6871-1",{"_key":87},"USN-6892-1",{"_key":89},"USN-6896-1",{"_key":91},"USN-6896-2",{"_key":93},"USN-6896-3",{"_key":95},"USN-6896-4",{"_key":97},"USN-6896-5",{"_key":99},"USN-6919-1",[],[102,103,104,105,106,107,108,109,110,111,112],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":49},{"_key":51},"2024-04-17T10:17:15.298Z","2026-05-12T11:49:32.649Z","Modified",{"cisa_kev":117,"cisa_ransomware":117,"cisa_vendor":9,"epss_severity":118,"epss_score":119,"severity":120,"severity_score":121,"severity_version":122,"severity_source":123,"severity_vector":124,"severity_status":115},false,"low",0.00007,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[126,132,136,140,144,148,152,156,160,166,170],{"url":127,"sources":128,"tags":130},"https://git.kernel.org/stable/c/98db42191329c679f4ca52bec0b319689e1ad8cb",[129,123],"cve.org",[131],"Patch",{"url":133,"sources":134,"tags":135},"https://git.kernel.org/stable/c/4bafcc43baf7bcf93566394dbd15726b5b456b7a",[129,123],[131],{"url":137,"sources":138,"tags":139},"https://git.kernel.org/stable/c/ccd1108b16ab572d9bf635586b0925635dbd6bbc",[129,123],[131],{"url":141,"sources":142,"tags":143},"https://git.kernel.org/stable/c/b3c0f553820516ad4b62a9390ecd28d6f73a7b13",[129,123],[131],{"url":145,"sources":146,"tags":147},"https://git.kernel.org/stable/c/39001e3c42000e7c2038717af0d33c32319ad591",[129,123],[131],{"url":149,"sources":150,"tags":151},"https://git.kernel.org/stable/c/014a807f1cc9c9d5173c1cd935835553b00d211c",[129,123],[131],{"url":153,"sources":154,"tags":155},"https://git.kernel.org/stable/c/80ee5054435a11c87c9a4f30f1ff750080c96416",[129,123],[131],{"url":157,"sources":158,"tags":159},"https://git.kernel.org/stable/c/767146637efc528b5e3d31297df115e85a2fd362",[129,123],[131],{"url":161,"sources":162,"tags":163},"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html",[129,123],[164,165],"X Transferred","Mailing List",{"url":167,"sources":168,"tags":169},"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html",[129,123],[164,165],{"url":171,"sources":172,"tags":173},"https://cert-portal.siemens.com/productcert/html/ssa-265688.html",[129,123],[],[],{"date":176,"score":119,"percentile":177},"2026-06-03",0.00624,[179,182,184,187,189,192,195,197,200,203,205,208,211,213,215,219,222,225,227,230,233,235,237,239,241,244,247,250,252,255,258,261,264,266,268,271,274,277,280,283,285,288,291,293,296,298,301,303,306,308,310,312,314,316,318,321,323,325,327,329,331,333,336,338,340,343,345,347,349,351,353,355,357,359,361,364,366,368,370,372,374,376,378,380,382,385,388,391,394,397],{"date":180,"score":119,"percentile":181},"2025-11-04",0.00409,{"date":183,"score":119,"percentile":181},"2025-11-05",{"date":185,"score":119,"percentile":186},"2025-11-06",0.0041,{"date":188,"score":119,"percentile":186},"2025-11-07",{"date":190,"score":119,"percentile":191},"2025-11-08",0.00408,{"date":193,"score":119,"percentile":194},"2025-11-09",0.00407,{"date":196,"score":119,"percentile":194},"2025-11-10",{"date":198,"score":119,"percentile":199},"2025-11-11",0.00406,{"date":201,"score":119,"percentile":202},"2025-11-12",0.00402,{"date":204,"score":119,"percentile":202},"2025-11-13",{"date":206,"score":119,"percentile":207},"2025-11-14",0.00403,{"date":209,"score":119,"percentile":210},"2025-11-15",0.00404,{"date":212,"score":119,"percentile":207},"2025-11-16",{"date":214,"score":119,"percentile":207},"2025-11-17",{"date":216,"score":217,"percentile":218},"2025-11-18",0.00086,0.20929,{"date":220,"score":217,"percentile":221},"2025-11-19",0.20939,{"date":223,"score":217,"percentile":224},"2025-11-20",0.20909,{"date":226,"score":119,"percentile":186},"2025-11-21",{"date":228,"score":119,"percentile":229},"2025-11-22",0.00411,{"date":231,"score":119,"percentile":232},"2025-11-23",0.00412,{"date":234,"score":119,"percentile":232},"2025-11-24",{"date":236,"score":119,"percentile":229},"2025-11-25",{"date":238,"score":119,"percentile":181},"2025-11-26",{"date":240,"score":119,"percentile":186},"2025-11-27",{"date":242,"score":119,"percentile":243},"2025-11-28",0.00414,{"date":245,"score":119,"percentile":246},"2025-11-29",0.00416,{"date":248,"score":119,"percentile":249},"2025-11-30",0.00417,{"date":251,"score":119,"percentile":243},"2025-12-01",{"date":253,"score":119,"percentile":254},"2025-12-02",0.00413,{"date":256,"score":119,"percentile":257},"2025-12-03",0.00415,{"date":259,"score":119,"percentile":260},"2025-12-04",0.00421,{"date":262,"score":119,"percentile":263},"2025-12-05",0.00422,{"date":265,"score":119,"percentile":260},"2025-12-06",{"date":267,"score":119,"percentile":263},"2025-12-07",{"date":269,"score":119,"percentile":270},"2025-12-08",0.00427,{"date":272,"score":119,"percentile":273},"2025-12-09",0.00439,{"date":275,"score":119,"percentile":276},"2025-12-10",0.0044,{"date":278,"score":119,"percentile":279},"2025-12-11",0.00442,{"date":281,"score":119,"percentile":282},"2025-12-12",0.00446,{"date":284,"score":119,"percentile":282},"2025-12-13",{"date":286,"score":119,"percentile":287},"2025-12-14",0.00445,{"date":289,"score":119,"percentile":290},"2025-12-15",0.00443,{"date":292,"score":119,"percentile":290},"2025-12-16",{"date":294,"score":119,"percentile":295},"2025-12-17",0.00441,{"date":297,"score":119,"percentile":273},"2025-12-18",{"date":299,"score":119,"percentile":300},"2025-12-19",0.00437,{"date":302,"score":119,"percentile":300},"2025-12-20",{"date":304,"score":119,"percentile":305},"2025-12-21",0.00436,{"date":307,"score":119,"percentile":295},"2025-12-22",{"date":309,"score":119,"percentile":290},"2025-12-23",{"date":311,"score":119,"percentile":287},"2025-12-24",{"date":313,"score":119,"percentile":287},"2025-12-25",{"date":315,"score":119,"percentile":282},"2025-12-26",{"date":317,"score":119,"percentile":273},"2025-12-27",{"date":319,"score":119,"percentile":320},"2025-12-28",0.00444,{"date":322,"score":119,"percentile":290},"2025-12-29",{"date":324,"score":119,"percentile":276},"2025-12-30",{"date":326,"score":119,"percentile":276},"2025-12-31",{"date":328,"score":119,"percentile":273},"2026-01-01",{"date":330,"score":119,"percentile":279},"2026-01-02",{"date":332,"score":119,"percentile":290},"2026-01-03",{"date":334,"score":119,"percentile":335},"2026-01-04",0.00435,{"date":337,"score":119,"percentile":305},"2026-01-05",{"date":339,"score":119,"percentile":335},"2026-01-06",{"date":341,"score":119,"percentile":342},"2026-01-07",0.00434,{"date":344,"score":119,"percentile":305},"2026-01-08",{"date":346,"score":119,"percentile":295},"2026-01-09",{"date":348,"score":119,"percentile":279},"2026-01-10",{"date":350,"score":119,"percentile":273},"2026-01-11",{"date":352,"score":119,"percentile":335},"2026-01-12",{"date":354,"score":119,"percentile":342},"2026-01-13",{"date":356,"score":119,"percentile":300},"2026-01-14",{"date":358,"score":119,"percentile":300},"2026-01-15",{"date":360,"score":119,"percentile":300},"2026-01-16",{"date":362,"score":119,"percentile":363},"2026-01-17",0.00438,{"date":365,"score":119,"percentile":276},"2026-01-18",{"date":367,"score":119,"percentile":300},"2026-01-19",{"date":369,"score":119,"percentile":335},"2026-01-20",{"date":371,"score":119,"percentile":335},"2026-01-21",{"date":373,"score":119,"percentile":305},"2026-01-22",{"date":375,"score":119,"percentile":363},"2026-01-23",{"date":377,"score":119,"percentile":295},"2026-01-24",{"date":379,"score":119,"percentile":290},"2026-01-25",{"date":381,"score":119,"percentile":287},"2026-01-26",{"date":383,"score":119,"percentile":384},"2026-01-27",0.0045,{"date":386,"score":119,"percentile":387},"2026-01-28",0.00452,{"date":389,"score":119,"percentile":390},"2026-01-29",0.00455,{"date":392,"score":119,"percentile":393},"2026-01-30",0.00465,{"date":395,"score":119,"percentile":396},"2026-01-31",0.00469,{"date":398,"score":119,"percentile":399},"2026-02-01",0.00472,[401],{"source":123,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":402,"cvss_v4_0":9},{"baseScore":121,"baseSeverity":403,"vectorString":124,"impactScore":404,"exploitabilityScore":405},"MEDIUM",6,4.6,[407,416,451],{"ecosystem":9,"name":408,"vendor":409,"product":410,"cpe_part":411,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":412},"debian linux","debian","debian_linux","o",[413],{"version":414,"is_range":117,"range_type":415,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"ecosystem":9,"name":417,"vendor":418,"product":418,"cpe_part":419,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":420},"Linux","linux","a",[421,428,431,434,437,440,443,446,449],{"version":422,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":426,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C 98db42191329c679f4ca52bec0b319689e1ad8cb",true,"5e35941d990123f155b02d5663e51a24f816b6f3","including","98db42191329c679f4ca52bec0b319689e1ad8cb","excluding",{"version":429,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":430,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C 4bafcc43baf7bcf93566394dbd15726b5b456b7a","4bafcc43baf7bcf93566394dbd15726b5b456b7a",{"version":432,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":433,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C ccd1108b16ab572d9bf635586b0925635dbd6bbc","ccd1108b16ab572d9bf635586b0925635dbd6bbc",{"version":435,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":436,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C b3c0f553820516ad4b62a9390ecd28d6f73a7b13","b3c0f553820516ad4b62a9390ecd28d6f73a7b13",{"version":438,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":439,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C 39001e3c42000e7c2038717af0d33c32319ad591","39001e3c42000e7c2038717af0d33c32319ad591",{"version":441,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":442,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C 014a807f1cc9c9d5173c1cd935835553b00d211c","014a807f1cc9c9d5173c1cd935835553b00d211c",{"version":444,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":445,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C 80ee5054435a11c87c9a4f30f1ff750080c96416","80ee5054435a11c87c9a4f30f1ff750080c96416",{"version":447,"is_range":423,"range_type":129,"version_start":424,"version_start_type":425,"version_end":448,"version_end_type":427,"fixed_in":9},">= 5e35941d990123f155b02d5663e51a24f816b6f3, \u003C 767146637efc528b5e3d31297df115e85a2fd362","767146637efc528b5e3d31297df115e85a2fd362",{"version":450,"is_range":117,"range_type":129,"version_start":450,"version_start_type":425,"version_end":450,"version_end_type":425,"fixed_in":9},"2.6.17",{"ecosystem":9,"name":452,"vendor":418,"product":453,"cpe_part":411,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":454},"linux kernel","linux_kernel",[455,458,462,466,470,474,478,482,484,486,488,490,492],{"version":456,"is_range":423,"range_type":415,"version_start":450,"version_start_type":425,"version_end":457,"version_end_type":427,"fixed_in":9},"gte2.6.17_lt4.19.310","4.19.310",{"version":459,"is_range":423,"range_type":415,"version_start":460,"version_start_type":425,"version_end":461,"version_end_type":427,"fixed_in":9},"gte4.20_lt5.4.272","4.20","5.4.272",{"version":463,"is_range":423,"range_type":415,"version_start":464,"version_start_type":425,"version_end":465,"version_end_type":427,"fixed_in":9},"gte5.5_lt5.10.213","5.5","5.10.213",{"version":467,"is_range":423,"range_type":415,"version_start":468,"version_start_type":425,"version_end":469,"version_end_type":427,"fixed_in":9},"gte5.11_lt5.15.152","5.11","5.15.152",{"version":471,"is_range":423,"range_type":415,"version_start":472,"version_start_type":425,"version_end":473,"version_end_type":427,"fixed_in":9},"gte5.16_lt6.1.82","5.16","6.1.82",{"version":475,"is_range":423,"range_type":415,"version_start":476,"version_start_type":425,"version_end":477,"version_end_type":427,"fixed_in":9},"gte6.2_lt6.6.22","6.2","6.6.22",{"version":479,"is_range":423,"range_type":415,"version_start":480,"version_start_type":425,"version_end":481,"version_end_type":427,"fixed_in":9},"gte6.7_lt6.7.10","6.7","6.7.10",{"version":483,"is_range":117,"range_type":415,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc1",{"version":485,"is_range":117,"range_type":415,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc2",{"version":487,"is_range":117,"range_type":415,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc3",{"version":489,"is_range":117,"range_type":415,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc4",{"version":491,"is_range":117,"range_type":415,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc5",{"version":493,"is_range":117,"range_type":415,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.8:rc6"]