Impact
A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.
Patches
The fix has been backported to 5.15.32 version of the upstream Linux kernel (5.15 is the upstream Kernel long term version Talos ships with). Talos >= v1.0.0 is shipped with Linux Kernel 5.15.32+ fixing the above issue.
Workarounds
It's recommended to upgrade.
References
For more information
Impact
A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.
Patches
The fix has been backported to 5.15.32 version of the upstream Linux kernel (5.15 is the upstream Kernel long term version Talos ships with). Talos >= v1.0.0 is shipped with Linux Kernel 5.15.32+ fixing the above issue.
Workarounds
It's recommended to upgrade.
References
For more information