CVE-2023-54035

EPSS 0.03%
Veröffentlicht 24.12.2025 10:56:02
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

netfilter: nf_tables: fix underflow in chain reference counter

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: fix underflow in chain reference counter

Set element addition error path decrements reference counter on chains
twice: once on element release and again via nft_data_release().

Then, d6b478666ffa ("netfilter: nf_tables: fix underflow in object
reference counter") incorrectly fixed this by removing the stateful
object reference count decrement.

Restore the stateful object decrement as in b91d90368837 ("netfilter:
nf_tables: fix leaking object reference count") and let
nft_data_release() decrement the chain reference counter, so this is
done only once.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

CNA 2 VulnDex Vulnerability Enrichment 8

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 35651fde1a7bb54dde0a46d35cd0d7136869ae86

Version < b068314fd8ce751a7f906e55bb90f3551815f1a0

Status affected

Version 628bd3e49cba1c066228e23d71a852c23e26da73

Version < 9c959671abc7d4ffdf34eed10c64492d43cb6a3c

Status affected

Version 628bd3e49cba1c066228e23d71a852c23e26da73

Version < b389139f12f287b8ed2e2628b72df89a081f0b59

Status affected

Version bc9f791d2593f17e39f87c6e2b3a36549a3705b1

Status affected

Version 3c7ec098e3b588434a8b07ea9b5b36f04cef1f50

Status affected

Version a136b7942ad2a50de708f76ea299ccb45ac7a7f9

Status affected

Version 25aa2ad37c2162be1c0bc4fe6397f7e4c13f00f8

Status affected

Version d60be2da67d172aecf866302c91ea11533eca4d9

Status affected

Version dc7cdf8cbcbf8b13de1df93f356ec04cdeef5c41

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.4

Status affected

Version 0

Version < 6.4

Status unaffected

Version <= 6.4.*

Version 6.4.4

Status unaffected

Version <= *

Version 6.5

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.092

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/b068314fd8ce751a7f906e55bb90f3551815f1a0

https://git.kernel.org/stable/c/9c959671abc7d4ffdf34eed10c64492d43cb6a3c

https://git.kernel.org/stable/c/b389139f12f287b8ed2e2628b72df89a081f0b59

https://nvd.nist.gov/vuln/detail/CVE-2023-54035

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54035

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54035

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-54035