CVE-2021-46283

No Score
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel before 5.12.13 allows local users to cause a denial of service (NULL pointer dereference and general protection fault) because of the missing initialization for nft_set_elem_expr_alloc. A local user can set a netfilter table expression in their own namespace.

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ad9f151e560b016b6ad3280b48e42fa11e1a5440

https://syzkaller.appspot.com/bug?id=22c3987f75a7b90e238a26b5a5920525c2d1f345

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.12.13

Details

Source: MITRE

Published: 2022-01-11

Updated: 2022-01-12

Tenable Plugins

View all (2 total)

IDNameProductFamilySeverity
157104openSUSE 15 Security Update : kernel (openSUSE-SU-2022:0169-1)NessusSuSE Local Security Checks
high
157087SUSE SLES15 Security Update : kernel (SUSE-SU-2022:0169-1)NessusSuSE Local Security Checks
high