retired/CVE-2023-5197


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: netfilter: nf_tables: disallow rule removal from chain binding
References:
 https://kernel.dance/f15f29fd4779be8a418b66e9d52979bb6d6c2325
Notes:
 carnil> Commit fixes d0e2c7de92c7 ("netfilter: nf_tables: add
 carnil> NFT_CHAIN_BINDING") in 5.9-rc1.
 carnil> For 6.5.y fixed as well in 6.5.6.
Bugs:
upstream: released (6.6-rc3) [f15f29fd4779be8a418b66e9d52979bb6d6c2325]
6.1-upstream-stable: released (6.1.56) [9af8bb2afea3705b58fe930f97a39322f46e5b8b]
5.10-upstream-stable: released (5.10.198) [5a03b42ae1ed646eb5f5acceff1fb2b1d85ec077]
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.5.6-1)
6.1-bookworm-security: released (6.1.64-1)
5.10-bullseye-security: released (5.10.205-1)
4.19-buster-security: N/A "Vulnerable code not present"