CVE-2026-23391

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> netfilter: xt_CT: drop pending enqueued packets on template removal<br /> <br /> Templates refer to objects that can go away while packets are sitting in<br /> nfqueue refer to:<br /> <br /> - helper, this can be an issue on module removal.<br /> - timeout policy, nfnetlink_cttimeout might remove it.<br /> <br /> The use of templates with zone and event cache filter are safe, since<br /> this just copies values.<br /> <br /> Flush these enqueued packets in case the template rule gets removed.