Linux Netfilter OOB write LPE — exploitable from unprivileged containers with NET_ADMIN capability. Apply kernel patches. Restrict CAP_NET_ADMIN capability in container security contexts. This is a recurring vulnerability class in Linux packet filtering.
An out-of-bounds write flaw was found in the Linux kernel net filter subsystem allowing user-space code with CAP_NET_ADMIN to achieve local privilege escalation.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →