CVE-2026-46324

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: use list_del_rcu for netlink hooks

nft_netdev_unregister_hooks and __nft_unregister_flowtable_net_hooks need to use list_del_rcu(), this list can be walked by concurrent dumpers.

Add a new helper and use it consistently.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf9a43007d3f7ba76d5e7f9421094f00f2ef202f8 < 0bd93ce4f3c35e845532184331d7917d7e562c80affected
LinuxLinuxf9a43007d3f7ba76d5e7f9421094f00f2ef202f8 < 0f33e8ad6ac563ae2233dd7f75884e0ee010521daffected
LinuxLinuxf9a43007d3f7ba76d5e7f9421094f00f2ef202f8 < f3224ee463f8f6f6ced7dcdf6081add4f8128527affected
LinuxLinuxc73955a09408e7374d9abfd0e78ce3de9cda0635affected
LinuxLinuxb09e6ccf0d12f9356e8e3508d3e3dce126298538affected
LinuxLinux3fac8ce48fa9fd61ee9056d3ed48b2edefca8b82affected
LinuxLinux9c413a8c8bb49cc16796371805ecb260e885bb2baffected
LinuxLinuxa3940dcf552f2393d1e8f263b386593f98abe829affected
LinuxLinux86c0154f4c3a56c5db8b9dd09e3ce885382c2c19affected
LinuxLinux4.19.316 < 4.20affected
LinuxLinux5.4.262 < 5.5affected
LinuxLinux5.10.198 < 5.11affected
LinuxLinux5.15.45 < 5.16affected
LinuxLinux5.17.13 < 5.18affected
LinuxLinux5.18.2 < 5.19affected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux6.18.33 <= 6.18.*unaffected
LinuxLinux7.0.10 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References