Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-22064

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: don't unregister hook when table is dormant When nf_tables_updchain encounters an error, hook registration needs to be rolled back. This should only be done if the hook has been registered, which won't happen when the table is flagged as dormant (inactive). Just move the assignment into the registration block.

Published

2025-04-16T15:16:00.620

Last Modified

2025-10-31T20:43:43.750

Status

Analyzed

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	< 6.6.87	Yes
Operating System	linux	linux_kernel	< 6.12.23	Yes
Operating System	linux	linux_kernel	< 6.13.11	Yes
Operating System	linux	linux_kernel	< 6.14.2	Yes

References

https://git.kernel.org/stable/c/03d1fb457b696c18fe15661440c4f052b2374e7e Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/6134d1ea1e1408e8e7c8c26545b3b301cbdf1eda Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/688c15017d5cd5aac882400782e7213d40dc3556 Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/ce571eba07d54e3637bf334bc48376fbfa55defe Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/feb1fa2a03a27fec7001e93e4223be4120d1784b Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)