CVE-2025-21826
netfilter: nf_tables: reject mismatching sum of field_len with set key length
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject mismatching sum of field_len with set key length The field length description provides the length of each separated key field in the concatenation, each field gets rounded up to 32-bits to calculate the pipapo rule width from pipapo_init(). The set key length provides the total size of the key aligned to 32-bits. Register-based arithmetics still allows for combining mismatching set key length and field length description, eg. set key length 10 and field description [ 5, 4 ] leading to pipapo width of 12.
| Vendor | linux |
| Product | linux |
| Ecosystems | |
| Industries | Technology |
| Published | Mar 6, 2025 |
| Last Updated | May 12, 2026 |
Stay Ahead of the Next One
Get instant alerts for linux linux
Be the first to know when new unknown vulnerabilities affecting linux linux are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Linux / Linux
2d4c0798a1ef8db15b3277697ac2def4eda42312 < 6b467c8feac759f4c5c86d708beca2aa2b29584f 77be8c495a3f841e88b46508cc20d3d7d3289da3 < 5083a7ae45003456c253e981b30a43f71230b4a3 9cb084df01e198119de477ac691d682fb01e80f3 < 2ac254343d3cf228ae0738b2615fedf85d000752 dc45bb00e66a33de1abb29e3d587880e1d4d9a7e < 82e491e085719068179ff6a5466b7387cc4bbf32 3ce67e3793f48c1b9635beb9bb71116ca1e51b58 < 49b7182b97bafbd5645414aff054b4a65d05823d 3ce67e3793f48c1b9635beb9bb71116ca1e51b58 < ab50d0eff4a939d20c37721fd9766347efcdb6f6 3ce67e3793f48c1b9635beb9bb71116ca1e51b58 < 1b9335a8000fb70742f7db10af314104b6ace220 ff67e3e488090908dc015ba04d7407d8bd467f7e
Linux / Linux
6.8
References
git.kernel.org: https://git.kernel.org/stable/c/6b467c8feac759f4c5c86d708beca2aa2b29584f git.kernel.org: https://git.kernel.org/stable/c/5083a7ae45003456c253e981b30a43f71230b4a3 git.kernel.org: https://git.kernel.org/stable/c/2ac254343d3cf228ae0738b2615fedf85d000752 git.kernel.org: https://git.kernel.org/stable/c/82e491e085719068179ff6a5466b7387cc4bbf32 git.kernel.org: https://git.kernel.org/stable/c/49b7182b97bafbd5645414aff054b4a65d05823d git.kernel.org: https://git.kernel.org/stable/c/ab50d0eff4a939d20c37721fd9766347efcdb6f6 git.kernel.org: https://git.kernel.org/stable/c/1b9335a8000fb70742f7db10af314104b6ace220 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-265688.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-503939.html