A memory leak problem was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the Linux Kernel. This flaw may allow a local attacker cause a double-deactivations of catchall elements which then results in memory leak problem. Refer: https://patchwork.ozlabs.org/project/netfilter-devel/patch/20230812110526.49808-1-fw@strlen.de/