In the Linux kernel, the following vulnerability has been resolved:
netfilter: nftables: fix percpu memory leak at nftables_addchain()
It seems to me that percpu memory for chain stats started leaking since commit 3bc158f8d0330f0a ("netfilter: nftables: map basechain priority to hardware priority") when nftchainoffloadpriority() returned an error.