QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-43024

Back to search

CVE-2026-43024

Published: May 1, 2026

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject immediate NF_QUEUE verdict nft_queue is always used from userspace nftables to deliver the NF_QUEUE verdict. Immediately emitting an NF_QUEUE verdict is never used by the userspace nft tools, so reject immediate NF_QUEUE verdicts. The arp family does not provide queue support, but such an immediate verdict is still reachable. Globally reject NF_QUEUE immediate verdicts to address this issue.

VendorProductVersions

Linux

Linux

affected
55a60251fa50d4e68175e36666b536a602ce4f6c - < 2f7f825a548be55420f0f5f716f6c27b9d312d3f
affected
960cf4f812530f01f6acc6878ceaa5404c06af7b - < f140593901724cfbd16597c3a4fcb24a58ae44b0
affected
8e34430e33b8a80bc014f3efe29cac76bc30a4b4 - < 68390437a998c3f2c57212b413abef5e6d657d88
affected
6653118b176a00915125521c6572ae8e507621db - < 4b12a3cc3f075e750cc3c5e693fd25fb400af4a2
affected
f342de4e2f33e0e39165d8639387aa6c19dff660 - < f710691be163ae6b39e4bcab9e5be32d329f035b

+13 more versions

Linux

Linux

affected
6.8
unaffected
0 - < 6.8
unaffected
5.10.253 - <= 5.10.*
unaffected
5.15.203 - <= 5.15.*
unaffected
6.1.168 - <= 6.1.*

+5 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now