Linux Kernel Vulnerability in Neighbor Discovery Option Parsing
CVE-2026-31682

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 April 2026

What is CVE-2026-31682?

A vulnerability exists in the Linux kernel's neighbor discovery mechanism, specifically within the br_nd_send() function. This issue arises when the function attempts to parse neighbor discovery options from a non-linear buffer, leading to potential access of memory beyond allocated limits. The vulnerability manifests when only the ICMPv6 header and target address are guaranteed to be available, allowing attackers to exploit the parsing of neighbor discovery options. To mitigate this risk, requests should be linearized prior to parsing, ensuring that the integrity of network header data is maintained.

Affected Version(s)

Linux ed842faeb2bd49256f00485402f3113205f91d30

Linux ed842faeb2bd49256f00485402f3113205f91d30 < 4f397b950c916e9a1f8a4fce04ea0110206cad47

Linux ed842faeb2bd49256f00485402f3113205f91d30

References

https://git.kernel.org/stable/c/c68433fd291c9e88c00292095...

https://git.kernel.org/stable/c/4f397b950c916e9a1f8a4fce0...

https://git.kernel.org/stable/c/bd91ec85aa4c77d645bd2739f...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 25, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31682 Data

JSON