CVE-2026-52988

Summary

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: join hook list via splice_list_rcu() in commit phase

Publish new hooks in the list into the basechain/flowtable using splice_list_rcu() to ensure netlink dump list traversal via rcu is safe while concurrent ruleset update is going on.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux78d9f48f7f44431a25da2b46b3a8812f6ff2b981 < 1346be9379639c30877083b12747d4eacb83c24faffected
LinuxLinux78d9f48f7f44431a25da2b46b3a8812f6ff2b981 < a6134e62dba2ea4f760b29d5226907f447c92400affected
LinuxLinux5.8affected
LinuxLinux0 < 5.8unaffected
LinuxLinux7.0.10 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References