Netfilter x_tables Heap Out-Of-Bounds Write / Privilege Escalation

Posted on 07 October 2021

A heap out-of-bounds write affecting Linux since version 2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a denial of service (via heap memory corruption) through user name space. Kernels up to and including 5.11 are vulnerable.