CVE-2026-31416
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_log: account for netlink header size
This is a followup to an old bug fix: NLMSG_DONE needs to account for the netlink header size, not just the attribute size.
This can result in a WARN splat + drop of the netlink message, but other than this there are no ill effects.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < 4ec216410fac9de83c99177a160ebb8d42fad075 | affected |
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < 09883bf257f4243ed5a1fd35078ec6f0d0f3696a | affected |
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < 761b45c661af48da6a065868d59ab1e1f64fd9b6 | affected |
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < 607245c4dbb86d9a10dd8388da0fb82170a99b61 | affected |
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < 6b419700e459fbf707ca1543b7c1b57a60fedb73 | affected |
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < 88a8f56e6276f616baad4274c6b8e4683e26e520 | affected |
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < f08ffa3e1c8e36b6131f69c5eb23700c28cbd262 | affected |
| Linux | Linux | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a < 6d52a4a0520a6696bdde51caa11f2d6821cd0c01 | affected |
| Linux | Linux | 3a758a2b78da2f49f7165678faf999e946a0c4b5 | affected |
| Linux | Linux | 131172845aa2c804ffa9423455aee585061ea35e | affected |
| Linux | Linux | b1fef6b81871a396f3b8702077333e769673c87b | affected |
| Linux | Linux | add9183d993c12fb61ce0a674a424341d5be5b36 | affected |
| Linux | Linux | 3.10.61 < 3.11 | affected |
| Linux | Linux | 3.12.34 < 3.13 | affected |
| Linux | Linux | 3.14.25 < 3.15 | affected |
| Linux | Linux | 3.17.4 < 3.18 | affected |
| Linux | Linux | 3.18 | affected |
| Linux | Linux | 0 < 3.18 | unaffected |
| Linux | Linux | 5.10.253 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.203 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.168 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.134 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.81 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.22 <= 6.18.* | unaffected |
| Linux | Linux | 6.19.12 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/4ec216410fac9de83c99177a160ebb8d42fad075
- https://git.kernel.org/stable/c/09883bf257f4243ed5a1fd35078ec6f0d0f3696a
- https://git.kernel.org/stable/c/761b45c661af48da6a065868d59ab1e1f64fd9b6
- https://git.kernel.org/stable/c/607245c4dbb86d9a10dd8388da0fb82170a99b61
- https://git.kernel.org/stable/c/6b419700e459fbf707ca1543b7c1b57a60fedb73
- https://git.kernel.org/stable/c/88a8f56e6276f616baad4274c6b8e4683e26e520
- https://git.kernel.org/stable/c/f08ffa3e1c8e36b6131f69c5eb23700c28cbd262
- https://git.kernel.org/stable/c/6d52a4a0520a6696bdde51caa11f2d6821cd0c01
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.