CVE-2026-45901
published 2026-05-27CVE-2026-45901: In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: revert commit_mutex usage in reset path It causes circular lock…
medium5.5
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: revert commit_mutex usage in reset path
It causes circular lock dependency between commit_mutex, nfnl_subsys_ipset
and nlk_cb_mutex when nft reset, ipset list, and iptables-nft with '-m set'
rule run at the same time.
Previous patches made it safe to run individual reset handlers concurrently
so commit_mutex is no longer required to prevent this.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | — | — |
| linux | linux | — | — |
| linux | linux | >= 3cb03edb4de33fd04c4ea55f47397b96a8657c53 < ee3978b6a0dcd4215cb7cedcba705a12174786a7 | ee3978b6a0dcd4215cb7cedcba705a12174786a7 |
| linux | linux | >= 3cb03edb4de33fd04c4ea55f47397b96a8657c53 < 7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc | 7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc |
| linux | linux | >= 6.1.107 < 6.2 | 6.2 |
| linux | linux | >= 6.6.48 < 6.7 | 6.7 |
| linux | linux_kernel | — | — |