Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013426)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013426 advisory. A flaw was found in the Linux kernel in linux/net/netfilter/nftablesapi.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write...

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-010739)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010739 advisory. A flaw was found in the Linux kernel in linux/net/netfilter/nftablesapi.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write...

EUVD-2022-41735

Malicious code in bioql PyPI...

EUVD-2021-32972

Malicious code in bioql PyPI...

The vulnerability of the __nft_release_table() function in the net/netfilter/nf_tables_api.c module of the netfilter component of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the nftreleasetable function in the net/netfilter/nftablesapi.c module of the netfilter component of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the nft_data_hold() function in the net/netfilter/nf_tables_api.c module of the netfilter component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the nftdatahold function in the net/netfilter/nftablesapi.c module of the netfilter component of the Linux operating system is related to improper memory release before deleting the last reference memory leak. Exploiting this vulnerability could allow an attacker to cause a...

The vulnerability of the nft_expr_type_get() function in the netfilter component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nftexprtypeget function in the net/netfilter/nftablesapi.c module of the Linux kernel’s netfilter component is related to concurrent access to resources race conditions. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, an...

CVE-2021-47394

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: unlink table before deleting it syzbot reports following UAF: BUG: KASAN: use-after-free in memcmp+0x18f/0x1c0 lib/string.c:955 nlastrcmp+0xf2/0x130 lib/nlattr.c:836 nfttablelookup.part.0+0x1a2/0x460...

CVE-2021-46992

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: avoid overflows in nfthashbuckets Number of buckets being stored in 32bit variables, we have to ensure that no overflows occur in nfthashbuckets syzbot injected a size == 0x40000000 and reported: UBSAN:...

CVE-2021-46992 netfilter: nftables: avoid overflows in nft_hash_buckets()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: avoid overflows in nfthashbuckets Number of buckets being stored in 32bit variables, we have to ensure that no overflows occur in nfthashbuckets syzbot injected a size == 0x40000000 and reported: UBSAN:...

The vulnerability of the nft_verdict_init() function in the net/netfilter/nf_tables_api.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information, thereby enhancing their privileges.

The vulnerability of the nftverdictinit function in the net/netfilter/nftablesapi.c module of the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility...

The vulnerability of the nft_trans_gc_catchall() function in the net/netfilter/nf_tables_api.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information, or to enhance their privileges.

The vulnerability of the nfttransgccatchall function in the net/netfilter/nftablesapi.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6386-3)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6386-3 advisory. Jana Hofmann, Emanuele Vannacci, Cedric Fournet, Boris Kopf, and Oleksii Oleksenko discovered that some AMD processors could leak stale data...

CBL Mariner 2.0 Security Update: kernel (CVE-2023-4569)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4569 advisory. - A memory leak flaw was found in nftsetcatchallflush in net/netfilter/nftablesapi.c in the Linux Kernel. This...

kernel: nf_tables: use-after-free in nft_chain_lookup_byid()

A use-after-free flaw was found in the Linux kernel's Netfilter module in net/netfilter/nftablesapi.c in nftchainlookupbyid. This flaw allows a local attacker to cause a local privilege escalation issue due to a missing cleanup...

Linux kernel memory leak vulnerability (CNVD-2023-70087)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a memory leak vulnerability that originates from nftsetcatchallflush in net/netfilter/nftablesapi.c not freeing or failing to free dynamically allocat...

CVE-2023-4569

CVE-2023-4569 – Linux kernel nf_tables memory leak : A memory leak is triggered by nft_set_catchall_flush in net/netfilter/nf_tables_api.c. Several connected advisories describe this as a local issue that can leak memory when catchall elements are deactivated. Affected software is the Linux kerne...

CVE-2023-4569 Kernel: information leak in nft_set_catchall_flush in net/netfilter/nf_tables_api.c

A memory leak flaw was found in nftsetcatchallflush in net/netfilter/nftablesapi.c in the Linux Kernel. This issue may allow a local attacker to cause double-deactivations of catchall elements, which can result in a memory leak...

CVE-2023-4569

A memory leak flaw was found in nftsetcatchallflush in net/netfilter/nftablesapi.c in the Linux Kernel. This issue may allow a local attacker to cause double-deactivations of catchall elements, which can result in a memory leak...

CBL Mariner 2.0 Security Update: kernel (CVE-2022-39190)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-39190 advisory. - An issue was discovered in net/netfilter/nftablesapi.c in the Linux kernel before 5.19.6. A denial of servic...