In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: account for netlink header size This is a followup to an old bug fix: NLMSG_DONE needs to account for the netlink header size, not just the attribute size. This can result in a WARN splat + drop of the netlink message, but other than this there are no ill effects.
| Vendor | Product | Versions |
|---|---|---|
| linux | linux kernel | 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 9dfa1dfe4d5e5e66a991321ab08afe69759d797a, 3a758a2b78da2f49f7165678faf999e946a0c4b5, 131172845aa2c804ffa9423455aee585061ea35e, b1fef6b81871a396f3b8702077333e769673c87b, add9183d993c12fb61ce0a674a424341d5be5b36, 3.18 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| linux | linux | mitre_affected | 90% |
| open source | open source linux kernel | cert_advisory | 90% |
Updated exploit availability to true and set patch available to null.
Updated description with critical details, changed severity to CRITICAL, and updated affected versions.
Added CVE-2026-31416, updated severity to LOW, and included new affected versions.
Initial creation
