Kevin Rich

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. The issue arises from the addition and removal of rules from chain bindings within the same transaction, leading to use-after-free. **Recommendations** Upgrade past commit f15f29fd4779be8a418b66e9d52979bb6d6c2325 to resolve the issue. As a temporary workaround, consider restricting access to the netfilter: nf tables component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. On an error when building a nftables rule, deactivating immediate expressions in `nft immediate deactivate()` can lead to unbinding the chain and objects being deactivated but later used. **Recommendations** Upgrade past commit 0a771f7b266b02d262900c75f1e175c7fe76fec2 to resolve the issue. As a temporary workaround, consider restricting the use of the `nft immediate deactivate()` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A use-after-free flaw was found in the Linux kernel's Netfilter functionality when adding a rule with `NFTA RULE CHAIN ID`. This flaw allows a local user to crash or escalate their privileges on the system. The issue is related to incorrect handling in the `nf tables newrule()` function in the `net/netfilter/nf tables api.c` module. Exploitation of this issue may impact the confidentiality, integrity, and availability of protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A use-after-free vulnerability in the Linux kernel's netfilter: nf tables component can be exploited to achieve local privilege escalation. When `nf tables delrule()` is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release the objects in certain circumstances. **Recommendations** Upgrade past commit 6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8 to resolve the issue. As a temporary workaround, consider restricting access to the `nf tables delrule()` function until a patch is available.