Buffer Overflow in Linux Kernel Netfilter Module for Packet Logging
CVE-2026-52942

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52942?

A vulnerability in the Linux kernel's netfilter module affects how MAC headers are validated during packet logging operations. Specifically, the fallback path of the dump_mac_header function does not properly check if the MAC header has been set. This oversight allows access to memory beyond allocated buffers, potentially leading to a buffer overflow condition. The issue arises when packets with an unset MAC header pass through specific logging paths, facilitating the possibility of exploitation through crafted network packets. Implementing a necessary check for MAC header status can mitigate this risk.

Affected Version(s)

Linux 7eb9282cd0efac08b8377cbd5037ba297c77e3f7

Linux 7eb9282cd0efac08b8377cbd5037ba297c77e3f7 < 8a81e336da685423f5b64aac4d571e63d674c52a

References

https://git.kernel.org/stable/c/d704ee9c7bc68a161684c51a7...

https://git.kernel.org/stable/c/befb8968a2abdfa948d5600ea...

https://git.kernel.org/stable/c/8a81e336da685423f5b64aac4...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52942 Data

JSON