-
CVE-2023-54035
- EPSS 0.16%
- Veröffentlicht 24.12.2025 10:56:02
- Zuletzt bearbeitet 15.04.2026 00:35:42
- CVE-Watchlists
- Unerledigt
netfilter: nf_tables: fix underflow in chain reference counter
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: fix underflow in chain reference counter
Set element addition error path decrements reference counter on chains
twice: once on element release and again via nft_data_release().
Then, d6b478666ffa ("netfilter: nf_tables: fix underflow in object
reference counter") incorrectly fixed this by removing the stateful
object reference count decrement.
Restore the stateful object decrement as in b91d90368837 ("netfilter:
nf_tables: fix leaking object reference count") and let
nft_data_release() decrement the chain reference counter, so this is
done only once.Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
35651fde1a7bb54dde0a46d35cd0d7136869ae86
Version <
b068314fd8ce751a7f906e55bb90f3551815f1a0
Status
affected
Version
628bd3e49cba1c066228e23d71a852c23e26da73
Version <
9c959671abc7d4ffdf34eed10c64492d43cb6a3c
Status
affected
Version
628bd3e49cba1c066228e23d71a852c23e26da73
Version <
b389139f12f287b8ed2e2628b72df89a081f0b59
Status
affected
Version
bc9f791d2593f17e39f87c6e2b3a36549a3705b1
Status
affected
Version
3c7ec098e3b588434a8b07ea9b5b36f04cef1f50
Status
affected
Version
a136b7942ad2a50de708f76ea299ccb45ac7a7f9
Status
affected
Version
25aa2ad37c2162be1c0bc4fe6397f7e4c13f00f8
Status
affected
Version
d60be2da67d172aecf866302c91ea11533eca4d9
Status
affected
Version
dc7cdf8cbcbf8b13de1df93f356ec04cdeef5c41
Status
affected
Version
4.19.316
Version <
4.20
Status
affected
Version
5.4.262
Version <
5.5
Status
affected
Version
5.10.188
Version <
5.11
Status
affected
Version
5.15.121
Version <
5.16
Status
affected
Version
6.3.10
Version <
6.4
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
6.4
Status
affected
Version
0
Version <
6.4
Status
unaffected
Version <=
6.4.*
Version
6.4.4
Status
unaffected
Version <=
*
Version
6.5
Status
unaffected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.05 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|
https://git.kernel.org/stable/c/b068314fd8ce751a7f906e55bb90f3551815f1a0
https://git.kernel.org/stable/c/9c959671abc7d4ffdf34eed10c64492d43cb6a3c
https://git.kernel.org/stable/c/b389139f12f287b8ed2e2628b72df89a081f0b59