Linux Kernel Vulnerability in Netfilter Affects Option Walkers
CVE-2026-43452

8.2HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 May 2026

What is CVE-2026-43452?

A vulnerability exists within the Linux kernel's netfilter component where option walkers can process data in an unsafe manner. Specifically, when handling the last byte of options, the system may erroneously read beyond the intended buffer length, leading to potential data exposure or corruption. To mitigate this risk, an explicit range check has been implemented to prevent out-of-bounds reading, ensuring that access to memory is properly validated before dereferencing pointers.

Affected Version(s)

Linux 2e4e6a17af35be359cc8f1c924f8f198fbd478cc

References

https://git.kernel.org/stable/c/c2a445367a496a3c25dbc940c...

https://git.kernel.org/stable/c/ae1e1267650638136b84c23f2...

https://git.kernel.org/stable/c/c39f84e4be1be63fc60ca7141...

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 8, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43452 Data

JSON