A flaw in the Linux Kernel found. For the netfilter, nf_tables_newrule when adding a rule with NFTA_RULE_CHAIN_ID can lead to use-after-free. Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ebc1064e4874d5987722a2ddbc18f94aa53b211
(In reply to Alex from comment #0) > A flaw in the Linux Kernel found. For the netfilter, nf_tables_newrule when > adding a rule with NFTA_RULE_CHAIN_ID can lead to use-after-free. > > Reference: > TODO add link when becomes available Any more information on that?
From the commit description this is https://git.kernel.org/linus/0ebc1064e4874d5987722a2ddbc18f94aa53b211 which matches as well your "Fixed In Version: Kernel 6.5-rc4" correct?
In reply to comment #8: > From the commit description this is > https://git.kernel.org/linus/0ebc1064e4874d5987722a2ddbc18f94aa53b211 which > matches as well your "Fixed In Version: Kernel 6.5-rc4" correct? Yes, correct.
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2229467]
This was fixed for Fedora with the 6.4.8 stable kernel updates.