CVE-2026-52988

HIGH

netfilter: nf_tables: join hook list via splice_list_rcu() in commit phase

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: join hook list via splice_list_rcu() in commit phase Publish new hooks in the list into the basechain/flowtable using splice_list_rcu() to ensure netlink dump list traversal via rcu is safe while concurrent ruleset update is going on.

Scores

CVSS v3 7.1
EPSS 0.0012
EPSS Percentile 2.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

Status published
Products (7)
linux/Kernel 5.8.0 - 7.0.10linux
Linux/Linux < 5.8
Linux/Linux 5.8
Linux/Linux 7.0.10 - 7.0.*
Linux/Linux 7.1
Linux/Linux 78d9f48f7f44431a25da2b46b3a8812f6ff2b981 - 1346be9379639c30877083b12747d4eacb83c24f
Linux/Linux 78d9f48f7f44431a25da2b46b3a8812f6ff2b981 - a6134e62dba2ea4f760b29d5226907f447c92400
Published Jun 24, 2026
Tracked Since Jun 24, 2026