Home/News/High-severity vulnerability in Linux caused by a single errant character
Ars Technica2 min read

High-severity vulnerability in Linux caused by a single errant character

High-severity vulnerability in Linux caused by a single errant character

A high-severity vulnerability, tracked as CVE-2026-23111, has been identified in the Linux kernel's nf_tables subsystem, allowing unprivileged users to escalate their privileges to root. This critical flaw stems from a single misplaced exclamation point within the code responsible for managing firewall rules. The nf_tables subsystem is a modern replacement for older packet filtering tools like iptables and ip6tables. The errant character introduced a use-after-free vulnerability, a memory corruption issue where malicious code can be injected into memory locations that have not been properly deallocated. This specific bug enables an attacker to gain administrative control over a vulnerable Linux system. Researchers discovered this vulnerability and its potential for privilege escalation.

Original source — read the full reporting at the publisher:

Read on Ars Technica

Read next