Edg Edg

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions through 5.18.1 **Description** The issue is related to an incorrect NFT STATEFUL EXPR check in the net/netfilter/nf tables api.c file, leading to a use-after-free condition. This allows a local user, who is able to create user/net namespaces, to escalate privileges to root. The vulnerability is associated with the Netfilter packet filtering software of the Linux kernel. **Recommendations** For Linux kernel versions through 5.18.1, consider disabling the `nft expr init` function as a temporary workaround until a patch is available. Restrict access to the `nf tables api.c` module to minimize the risk of exploitation. Avoid using the `NFT STATEFUL EXPR` check in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.