Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Netfilter nf_tables Duplicate Device Registration Vulnerability

Vulnerability

A vulnerability in the Linux kernel's netfilter component, specifically within the nf_tables subsystem, has been addressed. This issue involved improper handling of NETDEV_REGISTER notifications, which could lead to duplicate device registrations. Such duplicates were problematic because the device might have already been registered by the nft_netdev_hook_alloc() function when the hook was created. The vulnerability affected the Linux kernel stable tree.

Impact

The vulnerability could cause issues with network device management, potentially leading to incorrect handling of network traffic or device events.

Reproduction

The vulnerability could be reproduced by creating a netfilter nf_tables hook and then triggering a NETDEV_REGISTER notification for the same network device. This would result in a duplicate registration, as the device had already been added by the nft_netdev_hook_alloc() function when the hook was created.

Remediation

Users can update to the latest version of the Linux kernel stable tree, where this vulnerability has been fixed.

Added: May 8, 2026, 7:35 PM
Updated: May 8, 2026, 7:35 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
4.3
remediation
7.7
relevance
7.4
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.