CVE-2021-47312

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a null pointer dereference in the netfilter component of the Linux kernel, specifically in the nf tables module. This occurs when the chain->flags & NFT CHAIN HW OFFLOAD condition is false, leading to nft flow rule create not being called and the flow variable being NULL. As a result, the error handling path to err destroy flow rule will attempt to call nft flow rule destroy on a null flow, causing a null pointer dereference. The fix involves only calling nft flow rule destroy if the flow is non-null.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.