-

CVE-2026-31418

EPSS 0.04%
Veröffentlicht 13.04.2026 13:21:05
Zuletzt bearbeitet 18.04.2026 09:16:31
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

netfilter: ipset: drop logically empty buckets in mtype_del

In the Linux kernel, the following vulnerability has been resolved:

netfilter: ipset: drop logically empty buckets in mtype_del

mtype_del() counts empty slots below n->pos in k, but it only drops the
bucket when both n->pos and k are zero. This misses buckets whose live
entries have all been removed while n->pos still points past deleted slots.

Treat a bucket as empty when all positions below n->pos are unused and
release it directly instead of shrinking it further.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 10

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < c098ff857e7ca923539164af5b3c2fe3e8f8afaf

Status affected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < 58f3a14826d4e6b0d5421f1a64be280b48601ea2

Status affected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < ad92ee87462f9a3061361d392e9dbfe2e5c1c9fb

Status affected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < 6cea34d7ec6829b62f521a37a287f670144a2233

Status affected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < b7eef00f08b92b0b9efe8ae0df6d0005e6199323

Status affected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < 68ca0eea0af02bed36c5e2c13e9fa1647c31a7d4

Status affected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < ceacaa76f221a6577aba945bb8873c2e640aeba4

Status affected

Version 8af1c6fbd9239877998c7f5a591cb2c88d41fb66

Version < 9862ef9ab0a116c6dca98842aab7de13a252ae02

Status affected

Version 6c717726f341fd8f39a3ec2dcf5d98d9d28a2769

Status affected

Version d2997d64dfa65082236bca1efd596b6c935daf5e

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.6

Status affected

Version 0

Version < 5.6

Status unaffected

Version <= 5.10.*

Version 5.10.253

Status unaffected

Version <= 5.15.*

Version 5.15.203

Status unaffected

Version <= 6.1.*

Version 6.1.168

Status unaffected

Version <= 6.6.*

Version 6.6.134

Status unaffected

Version <= 6.12.*

Version 6.12.81

Status unaffected

Version <= 6.18.*

Version 6.18.22

Status unaffected

Version <= 6.19.*

Version 6.19.12

Status unaffected

Version <= *

Version 7.0

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.104

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/ad92ee87462f9a3061361d392e9dbfe2e5c1c9fb

https://git.kernel.org/stable/c/6cea34d7ec6829b62f521a37a287f670144a2233

https://git.kernel.org/stable/c/b7eef00f08b92b0b9efe8ae0df6d0005e6199323

https://git.kernel.org/stable/c/68ca0eea0af02bed36c5e2c13e9fa1647c31a7d4

https://git.kernel.org/stable/c/ceacaa76f221a6577aba945bb8873c2e640aeba4

https://git.kernel.org/stable/c/9862ef9ab0a116c6dca98842aab7de13a252ae02

https://git.kernel.org/stable/c/58f3a14826d4e6b0d5421f1a64be280b48601ea2

https://git.kernel.org/stable/c/c098ff857e7ca923539164af5b3c2fe3e8f8afaf

https://nvd.nist.gov/vuln/detail/CVE-2026-31418

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-31418

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-31418

EUVD