Linux Kernel nf_tables: RCU list deletion race in netlink hook unregistration
CVE-2026-46324 Published on June 9, 2026
netfilter: nf_tables: use list_del_rcu for netlink hooks
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: use list_del_rcu for netlink hooks
nft_netdev_unregister_hooks and __nft_unregister_flowtable_net_hooks need
to use list_del_rcu(), this list can be walked by concurrent dumpers.
Add a new helper and use it consistently.
Products Associated with CVE-2026-46324
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version f9a43007d3f7ba76d5e7f9421094f00f2ef202f8 and below 0bd93ce4f3c35e845532184331d7917d7e562c80 is affected.
- Version f9a43007d3f7ba76d5e7f9421094f00f2ef202f8 and below 0f33e8ad6ac563ae2233dd7f75884e0ee010521d is affected.
- Version f9a43007d3f7ba76d5e7f9421094f00f2ef202f8 and below f3224ee463f8f6f6ced7dcdf6081add4f8128527 is affected.
- Version c73955a09408e7374d9abfd0e78ce3de9cda0635 is affected.
- Version b09e6ccf0d12f9356e8e3508d3e3dce126298538 is affected.
- Version 3fac8ce48fa9fd61ee9056d3ed48b2edefca8b82 is affected.
- Version 9c413a8c8bb49cc16796371805ecb260e885bb2b is affected.
- Version a3940dcf552f2393d1e8f263b386593f98abe829 is affected.
- Version 86c0154f4c3a56c5db8b9dd09e3ce885382c2c19 is affected.
- Version 4.19.316 and below 4.20 is affected.
- Version 5.4.262 and below 5.5 is affected.
- Version 5.10.198 and below 5.11 is affected.
- Version 5.15.45 and below 5.16 is affected.
- Version 5.17.13 and below 5.18 is affected.
- Version 5.18.2 and below 5.19 is affected.
- Version 5.19 is affected.
- Before 5.19 is unaffected.
- Version 6.18.33, <= 6.18.* is unaffected.
- Version 7.0.10, <= 7.0.* is unaffected.
- Version 7.1-rc2, <= * is unaffected.