A use-after-free vulnerability in the Linux kernel’s netfilter: nf_tables component can be exploited to achieve local privilege escalation.
On an error when building a nftables rule, deactivating immediate expressions in nft_immediate_deactivate() can lead unbinding the chain and objects be deactivated but later used.
We recommend upgrading past commit 0a771f7b266b02d262900c75f1e175c7fe76fec2.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 12.0 | |
linux_kernel | ge | 6.2 | |
linux_kernel | lt | 6.4.8 | |
linux_kernel | ge | 5.16 | |
linux_kernel | lt | 6.1.43 | |
linux_kernel | ge | 5.11 | |
linux_kernel | lt | 5.15.124 | |
linux_kernel | ge | 5.9 | |
linux_kernel | lt | 5.10.190 |