Linux Kernel Netfilter nf_tables Field Length Mismatch Vulnerability

Vulnerability

A vulnerability in the Linux kernel's netfilter component, specifically within nf_tables, has been addressed. This issue arises from a mismatch between the field length description and the set key length, allowing for incorrect arithmetic operations that could be exploited. The vulnerability involves set key lengths that do not align properly with the corresponding field lengths, creating potential inconsistencies that could be manipulated.

Impact

Exploitation of this vulnerability could lead to incorrect handling of key lengths in netfilter's nf_tables, potentially allowing for arbitrary manipulation of packet filtering rules.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Netfilter nf_tables Field Length Mismatch Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating