CVE-2021-47394

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue has been identified in the Linux kernel's netfilter nf tables component. The problem arises because all get operations are lockless, allowing a parallel GET request to access the table object even after it has been deleted. This issue can be exploited due to the commit mutex held by nft rcv nl event() not being sufficient to prevent read-accesses to the table object after synchronize rcu(). The estimated number of potentially affected devices and details about real-world incidents are not provided. Technical details about exploitation include the nft table lookup function and the nf tables getset function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.