CVE-2026-46244

The CVE-2026-46244 issue is in Linux kernel netfilter nft_inner: during inner IPv6 processing, ipv6_find_hdr() computes the transport header offset but is overwritten with nhoff + 40 (IPv6 base header only), causing a desync between inner_thoff and l4proto. This enables transport header forgery a...

EUVD-2026-34106

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: Fix IPv6 innerthoff desync In nftinnerparsel2l3, when processing inner IPv6 packets, ipv6findhdr correctly computes the transport header offset traversing all extension headers, but the result is immediately...

CVE-2026-46244 netfilter: nft_inner: Fix IPv6 inner_thoff desync

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: Fix IPv6 innerthoff desync In nftinnerparsel2l3, when processing inner IPv6 packets, ipv6findhdr correctly computes the transport header offset traversing all extension headers, but the result is immediately...

SUSE CVE-2024-56638

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: incorrect percpu area handling under softirq Softirq can interrupt ongoing packet from process context that is walking over the percpu area that contains inner header offsets. Disable bh and perform three...

kernel: netfilter: nft_inner: validate mandatory meta and payload

A vulnerability was found in the Linux kernel's Netfilter subsystem in the nftinner component, where the issue occurs when mandatory netlink attributes for payload and meta expressions are not validated in embedded inner expressions, which can lead to a NULL pointer dereference from user space...

SUSE CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

DEBIAN-CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

UBUNTU-CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure of the netfilter:nftinner component to properly validate the mandatory netlink attribute...

CVE-2023-5972

A null pointer dereference flaw was found in the nftinner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system...

AZL-32062 CVE-2023-5972 affecting package hyperv-daemons for versions less than 5.15.143.1-1

A null pointer dereference flaw was found in the nftinner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system...

UBUNTU-CVE-2023-5972

A null pointer dereference flaw was found in the nftinner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system...

Linux kernel code issue vulnerability

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a code issue vulnerability that stems from a null pointer dereference flaw found in netfilter's nftinner.c, which causes a system crash. An attacker...

PT-2023-7267 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a null pointer dereference flaw in the nft inner.c functionality of netfilter in the Linux kernel. This flaw could allow a local user to crash the system or...