PT-2025-52992 · Linux+1 · Linux Kernel+1

Published

2025-12-24

Updated

2026-05-26

CVE-2023-54035

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the Linux kernel’s netfilter component related to the nf tables subsystem. A flaw in the chain reference counter handling can lead to an underflow. Specifically, an error path during set element addition incorrectly decrements the reference counter on chains twice. A previous fix attempted to address this but introduced an incorrect removal of the stateful object reference count decrement. The issue is resolved by restoring the stateful object decrement and ensuring the chain reference counter is decremented only once via nft data release().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54035

RHSA-2024:2394

RHSA-2024:3421

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Debian

Linux Kernel

PT-2025-52992 · Linux+1 · Linux Kernel+1

CVE-2023-54035

Related Identifiers

Affected Products

References · 1459