2 matches found
CVE-2026-52970
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: fix missing expect put in obj eval nftctexpectobjeval allocates an expectation and may call nfctexpectrelated, but never drops its local reference. Add nfctexpectputexp before return to balance allocation...
CVE-2026-52970
The CVE-2026-52970 entry maps to a Linux kernel netfilter issue in nft_ct: the function nft_ct_expect_obj_eval() allocates an expectation, may call nf_ct_expect_related(), but does not drop the local reference. The fix is to balance allocation by calling nf_ct_expect_put(exp) before returning. Co...