CVE-2025-22064

medium

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: don't unregister hook when table is dormant When nf_tables_updchain encounters an error, hook registration needs to be rolled back. This should only be done if the hook has been registered, which won't happen when the table is flagged as dormant (inactive). Just move the assignment into the registration block.

References

https://git.kernel.org/stable/c/feb1fa2a03a27fec7001e93e4223be4120d1784b

https://git.kernel.org/stable/c/ce571eba07d54e3637bf334bc48376fbfa55defe

https://git.kernel.org/stable/c/688c15017d5cd5aac882400782e7213d40dc3556

https://git.kernel.org/stable/c/6134d1ea1e1408e8e7c8c26545b3b301cbdf1eda

https://git.kernel.org/stable/c/03d1fb457b696c18fe15661440c4f052b2374e7e

Details

Source: Mitre, NVD

Published: 2025-04-16

Updated: 2025-04-17

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018