Acknowledged
Created: Oct 10, 2025
Updated: Oct 17, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]netfilter: nft_set_rbtree: fix null deref on element insertion[EOL][EOL]There is no guarantee that rb_prev() will not return NULL in nft_rbtree_gc_elem():[EOL][EOL]general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN[EOL]KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f][EOL] nft_add_set_elem+0x14b0/0x2990[EOL] nf_tables_newsetelem+0x528/0xb30[EOL][EOL]Furthermore, there is a possible use-after-free while iterating,[EOL]'node' can be free'd so we need to cache the next value to use.
