In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_socket: fix sk refcount leaks We must put 'sk' reference before returning.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024092743-CVE-2024-46855-4382@gregkh/T