Astra Linux - уязвимость в linux-5.10

A issue was discovered in net/netfilter/nftablesapi.c within the Linux kernel prior to version 5.19.6. A denial of service can occur when binding to an already bound chain...

kernel: use-after-free in netfilter: nf_tables

A use-after-free flaw was found in the Linux kernel's netfilter: nftables component, which can be exploited to achieve local privilege escalation. When nftablesdelrule is flushing table rules, it is not checked whether the chain is bound, and the chain's owner rule can release the objects in...

kernel: use-after-free in netfilter: nf_tables

A use-after-free flaw was found in the Linux kernel's netfilter: nftables component, which can be exploited to achieve local privilege escalation. When nftablesdelrule is flushing table rules, it is not checked whether the chain is bound, and the chain's owner rule can release the objects in...

USN-6479-1: Linux kernel (OEM) vulnerabilities

Kyle Zeng discovered that the netfilter subsystem in the Linux kernel contained a race condition in IP set operations in certain situations. A local attacker could use this to cause a denial of service system crash. CVE-2023-42756 Alex Birnberg discovered that the netfilter subsystem in the Linux...

CVE-2023-5197

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. Addition and removal of rules from chain bindings within the same transaction causes leads to use-after-free. We recommend upgrading past commit...

kernel: nf_tables disallow binding to already bound chain

A flaw was found in net/netfilter/nftablesapi.c in the Linux kernel. A denial of service can occur upon binding to an already bound chain...