Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix dereference of null pointer flow In the case where chain->flags & NFT_CHAIN_HW_OFFLOAD is false then nft_flow_rule_create is not called and flow is NULL. The subsequent error handling execution via label err_destroy_flow_rule will lead to a null pointer dereference on flow when calling nft_flow_rule_destroy. Since the error path to err_destroy_flow_rule has to cater for null and non-null flows, only call nft_flow_rule_destroy if flow is non-null to fix this issue. Addresses-Coverity: ("Explicity null dereference")

INFO

Published Date :

2024-05-21T14:35:29.963Z

Last Modified :

2025-05-04T07:08:28.332Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2021-47312 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2021-47312.

URL Resource
https://git.kernel.org/stable/c/4ca041f919f13783b0b03894783deee00dbca19a cve-icon cve-icon
https://git.kernel.org/stable/c/70a5a1950cca02c5cd161bb3846b4d983eed97d3 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052129-CVE-2021-47312-682b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-47312 cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-47312 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact