In the Linux kernel, the following vulnerability has been resolved:
net: sched: fix possible refcount leak in tcnewtfilter()
tfilterput need to be called to put the refount got by tp->ops->get to avoid possible refcount leak when chain->tmpltops != NULL and chain->tmplt_ops != tp->ops.