CVE-2026-43024

EUVD-2026-26623

01.05.2026, 15:16

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: reject immediate NF_QUEUE verdict

nft_queue is always used from userspace nftables to deliver the NF_QUEUE
verdict. Immediately emitting an NF_QUEUE verdict is never used by the
userspace nft tools, so reject immediate NF_QUEUE verdicts.

The arp family does not provide queue support, but such an immediate
verdict is still reachable. Globally reject NF_QUEUE immediate verdicts
to address this issue.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 2%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	4.19.307 ≤ 𝑥 < 4.20
linux	linux_kernel	5.4.269 ≤ 𝑥 < 5.5
linux	linux_kernel	5.10.210 ≤ 𝑥 < 5.10.253
linux	linux_kernel	5.15.149 ≤ 𝑥 < 5.15.203
linux	linux_kernel	6.1.76 ≤ 𝑥 < 6.1.168
linux	linux_kernel	6.6.15 ≤ 𝑥 < 6.6.134
linux	linux_kernel	6.7.3 ≤ 𝑥 < 6.8
linux	linux_kernel	6.8.1 ≤ 𝑥 < 6.12.81
linux	linux_kernel	6.13 ≤ 𝑥 < 6.18.22
linux	linux_kernel	6.19 ≤ 𝑥 < 6.19.12
linux	linux_kernel	6.8
linux	linux_kernel	6.8:rc2
linux	linux_kernel	6.8:rc3
linux	linux_kernel	6.8:rc4
linux	linux_kernel	6.8:rc5
linux	linux_kernel	6.8:rc6
linux	linux_kernel	6.8:rc7
linux	linux_kernel	7.0:rc1
linux	linux_kernel	7.0:rc2
linux	linux_kernel	7.0:rc3
linux	linux_kernel	7.0:rc4
linux	linux_kernel	7.0:rc5
linux	linux_kernel	7.0:rc6

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.170-3 fixed
bookworm (security)	6.1.174-1 fixed
bullseye	vulnerable
bullseye (security)	5.10.257-1 fixed
forky	7.0.10-1 fixed
sid	7.0.12-2 fixed
trixie	6.12.86-1 fixed
trixie (security)	6.12.90-2 fixed

linux-6.1

bullseye (security)

6.1.174-1~deb11u1

fixed

Amazon Linux Releases

Amazon Package

Release

bpftool

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

bpftool-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

bpftool6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

bpftool6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

bpftool6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

bpftool6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-debuginfo-common-aarch64

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-debuginfo-common-x86_64

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-devel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-headers

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf-devel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf-static

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-livepatch-6.1.168-202.320

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-livepatch-6.12.83-113.160

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-livepatch-6.18.25-52.107

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-modules-extra

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-modules-extra-common

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-tools

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-tools-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-tools-devel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-debuginfo-common-aarch64

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-debuginfo-common-x86_64

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-devel

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-headers

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-modules-extra

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-modules-extra-common

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-tools

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-tools-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-tools-devel

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-debuginfo-common-aarch64

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-debuginfo-common-x86_64

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-devel

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-headers

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-modules-extra

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-modules-extra-common

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-tools

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-tools-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-tools-devel

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

perf

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

perf-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

perf6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

perf6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

perf6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

perf6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

python3-perf

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

python3-perf-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

python3-perf6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

python3-perf6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

python3-perf6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

python3-perf6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

Vulnerability Media Exposure

[GERMAN] Linux Kernel: Mehrere Schwachstellen
Ein entfernter Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um Sicherheitsmechanismen zu umgehen, einen Denial-of-Service-Zustand herbeizuführen oder Auswirkungen unbestimmter Art zu erzielen.
Published: 2026-05-03T22:00:00+00:00

References

https://git.kernel.org/stable/c/17dc5d5a935c771338430cbc156a16a51cfd31e8

https://git.kernel.org/stable/c/2f7f825a548be55420f0f5f716f6c27b9d312d3f

https://git.kernel.org/stable/c/42a47f4b1b7695026ab9bc1bb35d4622b0835c95

https://git.kernel.org/stable/c/4b12a3cc3f075e750cc3c5e693fd25fb400af4a2

https://git.kernel.org/stable/c/68390437a998c3f2c57212b413abef5e6d657d88

https://git.kernel.org/stable/c/da107398cbd4bbdb6bffecb2ce86d5c9384f4cec

https://git.kernel.org/stable/c/f140593901724cfbd16597c3a4fcb24a58ae44b0

https://git.kernel.org/stable/c/f710691be163ae6b39e4bcab9e5be32d329f035b