CVE-2023-54035
- Source
- https://cve.org/CVERecord?id=CVE-2023-54035
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54035.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-54035
- Downstream
- Related
- Published
- 2025-12-24T10:56:02.358Z
- Modified
- 2026-03-31T17:29:41.134339468Z
- Summary
- netfilter: nf_tables: fix underflow in chain reference counter
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: fix underflow in chain reference counter
Set element addition error path decrements reference counter on chains twice: once on element release and again via nftdatarelease().
Then, d6b478666ffa ("netfilter: nf_tables: fix underflow in object reference counter") incorrectly fixed this by removing the stateful object reference count decrement.
Restore the stateful object decrement as in b91d90368837 ("netfilter: nftables: fix leaking object reference count") and let nftdata_release() decrement the chain reference counter, so this is done only once.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54035.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/9c959671abc7d4ffdf34eed10c64492d43cb6a3c
- https://git.kernel.org/stable/c/b068314fd8ce751a7f906e55bb90f3551815f1a0
- https://git.kernel.org/stable/c/b389139f12f287b8ed2e2628b72df89a081f0b59
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54035.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-54035
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced35651fde1a7bb54dde0a46d35cd0d7136869ae86Fixedb068314fd8ce751a7f906e55bb90f3551815f1a0
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced628bd3e49cba1c066228e23d71a852c23e26da73Fixed9c959671abc7d4ffdf34eed10c64492d43cb6a3cFixedb389139f12f287b8ed2e2628b72df89a081f0b59
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedbc9f791d2593f17e39f87c6e2b3a36549a3705b1Last affected3c7ec098e3b588434a8b07ea9b5b36f04cef1f50Last affecteda136b7942ad2a50de708f76ea299ccb45ac7a7f9Last affected25aa2ad37c2162be1c0bc4fe6397f7e4c13f00f8Last affectedd60be2da67d172aecf866302c91ea11533eca4d9Last affecteddc7cdf8cbcbf8b13de1df93f356ec04cdeef5c41