A critical vulnerability (CVE-2026-23111) in the Linux kernel's nf_tables subsystem allows unprivileged users to gain root access due to a single misplaced exclamation mark. The bug creates a use-after-free condition that can be exploited to manipulate memory and elevate privileges. This high-severity flaw affects a core networking component used for firewall rules across most Linux systems.
Background
nf_tables is a packet filtering framework in the Linux kernel that replaced older systems like iptables, used for managing firewall rules and network traffic filtering. Use-after-free vulnerabilities are a common class of memory safety bugs that can lead to arbitrary code execution.
- Source
- Ars Technica
- Published
- Jun 9, 2026 at 11:12 PM
- Score
- 9.0 / 10