Linux Kernel Vulnerability in Netfilter Affects Data Handling
CVE-2026-31428

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 13 April 2026

What is CVE-2026-31428?

A vulnerability in the Linux kernel's netfilter component presents potential data leakage risks due to uninitialized padding in NFULA_PAYLOAD. The affected function, __build_packet_message(), bypasses standard helpers, leading to the exposure of stale heap contents through the NFLOG netlink socket. This flaw has been mitigated by replacing manual packet construction with functions that ensure proper data initialization and padding, thus safeguarding against unintended data disclosure.

Affected Version(s)

Linux df6fb868d6118686805c2fa566e213a8f31c8e4f

References

https://git.kernel.org/stable/c/fc961dd7272b5e4a462999635...

https://git.kernel.org/stable/c/a8365d1064ded323797c5e28e...

https://git.kernel.org/stable/c/a2f6ff3444b663d6cfa63eadd...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 13, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31428 Data

JSON