Lucene search
K
LinuxLinux Kernel4.19.316

6 matches found

CVE
CVE
added 2024/04/24 9:49 p.m.7867 views

CVE-2024-26925

CVE-2024-26925 affects the Linux kernel nf_tables component. The issue arises when the commit mutex is released during the abort path between nft_gc_seq_begin() and nft_gc_seq_end(), allowing an asynchronous GC worker to collect expired objects and obtain the released commit lock within the same ...

5.5CVSS6.4AI score0.00256EPSS
CVE
CVE
added 2026/02/13 1:29 p.m.165 views

CVE-2026-23111

CVE-2026-23111 (Linux kernel) : A bug in netfilter nf_tables nft_map_catchall_activate() inverted the genmask check, causing catchall elements to be processed incorrectly during abort of a DELSET operation. The function skipped inactive elements and processed active ones, leading to a use-after-f...

7.8CVSS5.3AI score0.00344EPSS
CVE
CVE
added 2025/02/05 9:7 a.m.117 views

CVE-2023-52925

CVE-2023-52925 relates to the Linux kernel nf_tables code. The vulnerability concerns how nf_tables handles inserts for duplicate set entries when some duplicates have expired. The description states that the system should ignore expired duplicates and not fail inserts, noting an asymmetry in nft...

6.2CVSS7AI score0.00203EPSS
CVE
CVE
added 2026/06/09 12:11 p.m.51 views

CVE-2026-46324

CVE-2026-46324 concerns the Linux kernel’s nf_tables netlink hook handling. The vuln is fixed by replacing use of list_del_rcu() for nft_netdev_unregister_hooks and __nft_unregister_flowtable_net_hooks to prevent concurrent dumpers from walking the list while it’s modified. A new helper was added...

7.8CVSS5.3AI score0.00119EPSS
CVE
CVE
added 2026/03/20 8:8 a.m.29 views

CVE-2026-23278

CVE-2026-23278 (Linux kernel nf_tables catchall handling) The issue occurs in netfilter nf_tables where, during transaction processing, a map holding catchall elements being removed may require toggling all pending catchall elements, not just the first viable candidate. If the map is also being f...

7.8CVSS5.7AI score0.00165EPSS
CVE
CVE
added 2026/05/27 12:15 p.m.24 views

CVE-2026-45873

CVE-2026-45873 concerns Linux kernel netfilter nft_set_rbtree. The issue arises from partial overlap detection for anonymous sets where adjacent intervals omit end elements, allowing overlaps such as A-B and A-C with C

5.5CVSS5.8AI score0.00156EPSS