-

CVE-2026-53001

netfilter: xtables: restrict several matches to inet family

In the Linux kernel, the following vulnerability has been resolved:

netfilter: xtables: restrict several matches to inet family

This is a partial revert of:

  commit ab4f21e6fb1c ("netfilter: xtables: use NFPROTO_UNSPEC in more extensions")

to allow ipv4 and ipv6 only.

- xt_mac
- xt_owner
- xt_physdev

These extensions are not used by ebtables in userspace.

Moreover, xt_realm is only for ipv4, since dst->tclassid is ipv4
specific.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < 14203f9edf944b3fb63faadd62f38452421ecdfc
Status affected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < 7eaf9c740f33230cb224dc265f3c69f8531ff57b
Status affected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < 9a109751b297b0f2135495749ef5a18ba31ec7d4
Status affected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < cbeb259f31382de70a70a59ffd0e66f5e80d9818
Status affected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < 689a91ff18d6448d94c1ab7c076fecdb2b668bef
Status affected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < 76160e04440c9698b989dbd9492a7ec4f520c9ee
Status affected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < fa88161ef56e29bdaa05cc89dbc4ee221e94bfe9
Status affected
Version ab4f21e6fb1c09b13c4c3cb8357babe8223471bd
Version < b6fe26f86a1649f84e057f3f15605b08eda15497
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 2.6.28
Status affected
Version 0
Version < 2.6.28
Status unaffected
Version <= 5.10.*
Version 5.10.258
Status unaffected
Version <= 5.15.*
Version 5.15.209
Status unaffected
Version <= 6.1.*
Version 6.1.175
Status unaffected
Version <= 6.6.*
Version 6.6.141
Status unaffected
Version <= 6.12.*
Version 6.12.91
Status unaffected
Version <= 6.18.*
Version 6.18.33
Status unaffected
Version <= 7.0.*
Version 7.0.10
Status unaffected
Version <= *
Version 7.1
Status unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.18% 0.074
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/14203f9edf944b3fb63faadd62f38452421ecdfc
https://git.kernel.org/stable/c/7eaf9c740f33230cb224dc265f3c69f8531ff57b
https://git.kernel.org/stable/c/9a109751b297b0f2135495749ef5a18ba31ec7d4
https://git.kernel.org/stable/c/cbeb259f31382de70a70a59ffd0e66f5e80d9818
https://git.kernel.org/stable/c/689a91ff18d6448d94c1ab7c076fecdb2b668bef
https://git.kernel.org/stable/c/76160e04440c9698b989dbd9492a7ec4f520c9ee
https://git.kernel.org/stable/c/fa88161ef56e29bdaa05cc89dbc4ee221e94bfe9
https://git.kernel.org/stable/c/b6fe26f86a1649f84e057f3f15605b08eda15497