Description
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: join hook list via splice_list_rcu() in commit phase Publish new hooks in the list into the basechain/flowtable using splice_list_rcu() to ensure netlink dump list traversal via rcu is safe while concurrent ruleset update is going on.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
High
Affected products
- Linux / Linux78d9f48f7f44431a25da2b46b3a8812f6ff2b981 – 1346be9379639c30877083b12747d4eacb83c24f
- Linux / Linux78d9f48f7f44431a25da2b46b3a8812f6ff2b981 – a6134e62dba2ea4f760b29d5226907f447c92400
- Linux / Linux5.8 – 5.8
- Linux / Linux0 – 5.8
- Linux / Linux7.0.10 – 7.0.*
- Linux / Linux7.1 – *