GHSA-vwvf-62c8-j66cMediumCVSS 5.5

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: drop...

Published
April 13, 2026
Last Modified
May 20, 2026

🔗 CVE IDs covered (1)

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

netfilter: ipset: drop logically empty buckets in mtype_del

mtype_del() counts empty slots below n->pos in k, but it only drops the bucket when both n->pos and k are zero. This misses buckets whose live entries have all been removed while n->pos still points past deleted slots.

Treat a bucket as empty when all positions below n->pos are unused and release it directly instead of shrinking it further.

🔗 References (10)