CVE-2026-53269 - netfilter: synproxy: add mutex to guard hook reference counting
CVE ID :CVE-2026-53269
Published : June 25, 2026, 8:39 a.m. | 1 hour, 1 minute ago
Description :In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: add mutex to guard hook reference counting As the synproxy infrastructure register netfilter hooks on-demand when a user adds the first iptables target or nftables expression, if done concurrently they can race each other. Introduce a mutex to serialize the refcount control blocks access from both frontends. While a per namespace mutex might be more efficient, it is not needed for target/expression like SYNPROXY.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : June 25, 2026, 8:39 a.m. | 1 hour, 1 minute ago
Description :In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: add mutex to guard hook reference counting As the synproxy infrastructure register netfilter hooks on-demand when a user adds the first iptables target or nftables expression, if done concurrently they can race each other. Introduce a mutex to serialize the refcount control blocks access from both frontends. While a per namespace mutex might be more efficient, it is not needed for target/expression like SYNPROXY.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...