PT-2026-22911 · Linux+3 · Linux Kernel+3

Published

2026-03-04

·

Updated

2026-05-26

·

CVE-2026-23231

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a use-after-free issue within the nf tables module, specifically in the nf tables addchain() function. This function publishes a chain before registering hooks, and if hook registration fails, the chain can be freed while still being accessed by control-plane operations like nf tables dump chains() or packet-path operations during transient IPv4 hook installation. The issue arises from a lack of an RCU grace period between chain deletion and destruction, potentially leading to dereferencing freed memory.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2026:6053
ALSA-2026:6570
ALSA-2026:6571
ALSA-2026:6572
AZL-78650
CVE-2026-23231
ECHO-23DD-6AC6-506D
OESA-2026-1862
OESA-2026-1863
OESA-2026-1864
OPENSUSE-SU-2026:10387-1
OPENSUSE-SU-2026:20572-1
RHSA-2026:10108
RHSA-2026:10756
RHSA-2026:6053
RHSA-2026:6570
RHSA-2026:6571
RHSA-2026:6572
RHSA-2026:6940
RHSA-2026:9095
RHSA-2026:9512
RHSA-2026:9513
RHSA-2026:9514
RHSA-2026:9515
RHSA-2026:9643
RHSA-2026:9644
RHSA-2026:9835
RHSA-2026:9836
RHSA-2026:9870
SUSE-SU-2026:1573-1
SUSE-SU-2026:1643-1
SUSE-SU-2026:1661-1
SUSE-SU-2026:21114-1
SUSE-SU-2026:21123-1
SUSE-SU-2026:21237-1
SUSE-SU-2026:21255-1
SUSE-SU-2026:21352-1
SUSE-SU-2026:21361-1
USN-8244-1
USN-8245-1
USN-8254-1
USN-8254-2
USN-8254-3
USN-8257-1
USN-8258-1
USN-8260-1
USN-8261-1

Affected Products

Linuxmint
Linux Kernel
Rocky Linux
Ubuntu