8.2

CVE-2026-43452

EPSS 0.07%
Veröffentlicht 08.05.2026 14:22:17
Zuletzt bearbeitet 12.05.2026 14:10:27
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

netfilter: x_tables: guard option walkers against 1-byte tail reads

In the Linux kernel, the following vulnerability has been resolved:

netfilter: x_tables: guard option walkers against 1-byte tail reads

When the last byte of options is a non-single-byte option kind, walkers
that advance with i += op[i + 1] ? : 1 can read op[i + 1] past the end
of the option area.

Add an explicit i == optlen - 1 check before dereferencing op[i + 1]
in xt_tcpudp and xt_dccp option walkers.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 14

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < c2a445367a496a3c25dbc940c10c8bd1cfd4c14a

Status affected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < ae1e1267650638136b84c23f2b31250f0ccb6823

Status affected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < c39f84e4be1be63fc60ca7141ea7b76edcea5907

Status affected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < 9b94f0e42ed248eb31929da84ed9f5310d7ff540

Status affected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < 5b18b8b35c7cded2d17b2b2604c9b0694ff48d1c

Status affected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < bc18551c6169eac5ed813778d3e3e484002dbbe5

Status affected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < d04800323336eebf441d153f43234eac9b833d36

Status affected

Version 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

Version < cfe770220ac2dbd3e104c6b45094037455da81d4

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.16

Status affected

Version 0

Version < 2.6.16

Status unaffected

Version <= 5.10.*

Version 5.10.253

Status unaffected

Version <= 5.15.*

Version 5.15.203

Status unaffected

Version <= 6.1.*

Version 6.1.167

Status unaffected

Version <= 6.6.*

Version 6.6.130

Status unaffected

Version <= 6.12.*

Version 6.12.78

Status unaffected

Version <= 6.18.*

Version 6.18.19

Status unaffected

Version <= 6.19.*

Version 6.19.9

Status unaffected

Version <= *

Version 7.0

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.209

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
416baaa9-dc9f-4396-8d5f-8c081fb06d67	8.2	3.9	4.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/c2a445367a496a3c25dbc940c10c8bd1cfd4c14a

https://git.kernel.org/stable/c/ae1e1267650638136b84c23f2b31250f0ccb6823

https://git.kernel.org/stable/c/c39f84e4be1be63fc60ca7141ea7b76edcea5907

https://git.kernel.org/stable/c/9b94f0e42ed248eb31929da84ed9f5310d7ff540

https://git.kernel.org/stable/c/5b18b8b35c7cded2d17b2b2604c9b0694ff48d1c

https://git.kernel.org/stable/c/bc18551c6169eac5ed813778d3e3e484002dbbe5

https://git.kernel.org/stable/c/d04800323336eebf441d153f43234eac9b833d36

https://git.kernel.org/stable/c/cfe770220ac2dbd3e104c6b45094037455da81d4

https://nvd.nist.gov/vuln/detail/CVE-2026-43452

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-43452

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-43452

EUVD