CVE-2026-45901
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: revert commit_mutex usage in reset path
It causes circular lock dependency between commit_mutex, nfnl_subsys_ipset and nlk_cb_mutex when nft reset, ipset list, and iptables-nft with '-m set' rule run at the same time.
Previous patches made it safe to run individual reset handlers concurrently so commit_mutex is no longer required to prevent this.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 3cb03edb4de33fd04c4ea55f47397b96a8657c53 < ee3978b6a0dcd4215cb7cedcba705a12174786a7 | affected |
| Linux | Linux | 3cb03edb4de33fd04c4ea55f47397b96a8657c53 < 7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc | affected |
| Linux | Linux | fb1adb05ea87b6149e65a31e511756c4f470d0cd | affected |
| Linux | Linux | f123293db16dcd0cd81b246ae60e6362f0025d0a | affected |
| Linux | Linux | 6.1.107 < 6.2 | affected |
| Linux | Linux | 6.6.48 < 6.7 | affected |
| Linux | Linux | 6.7 | affected |
| Linux | Linux | 0 < 6.7 | unaffected |
| Linux | Linux | 6.19.4 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/ee3978b6a0dcd4215cb7cedcba705a12174786a7
- https://git.kernel.org/stable/c/7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.