CVE-2026-43452
Published: May 8, 2026
Modified: May 11, 2026
CVSS v3.1
8.2
Description
In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: guard option walkers against 1-byte tail reads When the last byte of options is a non-single-byte option kind, walkers that advance with i += op[i + 1] ? : 1 can read op[i + 1] past the end of the option area. Add an explicit i == optlen - 1 check before dereferencing op[i + 1] in xt_tcpudp and xt_dccp option walkers.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 2e4e6a17af35be359cc8f1c924f8f198fbd478cc - < c2a445367a496a3c25dbc940c10c8bd1cfd4c14aaffected 2e4e6a17af35be359cc8f1c924f8f198fbd478cc - < ae1e1267650638136b84c23f2b31250f0ccb6823affected 2e4e6a17af35be359cc8f1c924f8f198fbd478cc - < c39f84e4be1be63fc60ca7141ea7b76edcea5907affected 2e4e6a17af35be359cc8f1c924f8f198fbd478cc - < 9b94f0e42ed248eb31929da84ed9f5310d7ff540affected 2e4e6a17af35be359cc8f1c924f8f198fbd478cc - < 5b18b8b35c7cded2d17b2b2604c9b0694ff48d1c+3 more versions |
Linux | Linux | affected 2.6.16unaffected 0 - < 2.6.16unaffected 5.10.253 - <= 5.10.*unaffected 5.15.203 - <= 5.15.*unaffected 6.1.167 - <= 6.1.*+5 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now