SUSE CVE-2026-46324

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: use listdelrcu for netlink hooks nftnetdevunregisterhooks and nftunregisterflowtablenethooks need to use listdelrcu, this list can be walked by concurrent dumpers. Add a new helper and use it consistently...

SUSE CVE-2026-23412

In the Linux kernel, the following vulnerability has been resolved: netfilter: bpf: defer hook memory release until rcu readers are done Yiming Qian reports UaF when concurrent process is dumping hooks via nfnetlinkhooks: BUG: KASAN: slab-use-after-free in nfnlhookdumpone.isra.0+0xe71/0x10f0 Read...

CVE-2026-23412

The CVE-2026-23412 issue affects the Linux kernel’s netfilter/BPF path. It describes a use-after-free (UaF) in nfnetlink_hooks where a concurrent process dumps hooks, triggering a KASAN slab-use-after-free in nfnl_hook_dump_one. The root cause is deferring the release of hook memory until RCU rea...

kernel: dpll: fix possible deadlock during netlink dump operation

A vulnerability was found in the Linux kernel, where an ABBA deadlock condition may be created if multiple CPUs attempt a DPLL netlink dump operation simultaneously. This deadlock could lead to performance issues...