nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel before 5.12.13 allows local users to cause a denial of service (NULL pointer dereference and general protection fault) because of the missing initialization for nft_set_elem_expr_alloc. A local user can set a netfilter table expression in their own namespace. CREATE(Triage):(User=admin) CVE-2021-46283 (https://nvd.nist.gov/vuln/detail/CVE-2021-46283)
