CVE-2026-43454

HIGH

netfilter: nf_tables: Fix for duplicate device in netdev hooks

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix for duplicate device in netdev hooks When handling NETDEV_REGISTER notification, duplicate device registration must be avoided since the device may have been added by nft_netdev_hook_alloc() already when creating the hook.

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/6d2a95c6890577cc3eab2b20018e16850d7fb094

https://git.kernel.org/stable/c/2041cdb078041611510fc189410bc70b29f688fb

https://git.kernel.org/stable/c/b7cdc5a97d02c943f4bdde4d5767ad0c13cad92b

Scores

CVSS v3 7.8

EPSS 0.0001

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (10)

Linux/Linux < 6.16

Linux/Linux 6.16

Linux/Linux 6.18.19 - 6.18.*

Linux/Linux 6.19.9 - 6.19.*

Linux/Linux 7.0

Linux/Linux a331b78a552551d0e404e58e6390b1c828d6af8f - 2041cdb078041611510fc189410bc70b29f688fb

Linux/Linux a331b78a552551d0e404e58e6390b1c828d6af8f - 6d2a95c6890577cc3eab2b20018e16850d7fb094

Linux/Linux a331b78a552551d0e404e58e6390b1c828d6af8f - b7cdc5a97d02c943f4bdde4d5767ad0c13cad92b

linux/linux_kernel 7.0 rc1 (3 CPE variants)

linux/linux_kernel 6.16 - 6.18.19

Published May 08, 2026

Tracked Since May 08, 2026