Vulnerability-Lookup

CVE-2026-31407 (GCVE-0-2026-31407)

Vulnerability from cvelistv5 – Published: 2026-04-06 07:38 – Updated: 2026-04-27 14:02

Title

netfilter: conntrack: add missing netlink policy validations

Summary

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: add missing netlink policy validations Hyunwoo Kim reports out-of-bounds access in sctp and ctnetlink. These attributes are used by the kernel without any validation. Extend the netlink policies accordingly. Quoting the reporter: nlattr_to_sctp() assigns the user-supplied CTA_PROTOINFO_SCTP_STATE value directly to ct->proto.sctp.state without checking that it is within the valid range. [..] and: ... with exp->dir = 100, the access at ct->master->tuplehash[100] reads 5600 bytes past the start of a 320-byte nf_conn object, causing a slab-out-of-bounds read confirmed by UBSAN.

Severity ?

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Assigner

Linux

References

URL

CERTFR-2026-AVI-0548

Vulnerability from certfr_avis - Published: 2026-05-07 - Updated: 2026-05-07

De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un déni de service.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

	Vendor	Product	Description
	Debian	Debian	Debian trixie versions antérieures à 6.12.85-1
	Debian	Debian	Debian trixie versions antérieures à version 6.1.170-1

References

Title

Publication Time

Tags

Bulletin de sécurité Debian msg00154	2026-05-01	vendor-advisory
Bulletin de sécurité Debian msg00148	2026-04-30	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Debian trixie versions ant\u00e9rieures \u00e0 6.12.85-1",
      "product": {
        "name": "Debian",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    },
    {
      "description": "Debian trixie versions ant\u00e9rieures \u00e0 version 6.1.170-1",
      "product": {
        "name": "Debian",
        "vendor": {
          "name": "Debian",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-31559",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31559"
    },
    {
      "name": "CVE-2026-31623",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31623"
    },
    {
      "name": "CVE-2026-31483",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31483"
    },
    {
      "name": "CVE-2026-31409",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31409"
    },
    {
      "name": "CVE-2026-31522",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31522"
    },
    {
      "name": "CVE-2026-31770",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31770"
    },
    {
      "name": "CVE-2026-23447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23447"
    },
    {
      "name": "CVE-2026-31582",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31582"
    },
    {
      "name": "CVE-2026-23387",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23387"
    },
    {
      "name": "CVE-2026-31619",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31619"
    },
    {
      "name": "CVE-2026-31658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31658"
    },
    {
      "name": "CVE-2026-31618",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31618"
    },
    {
      "name": "CVE-2025-21682",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21682"
    },
    {
      "name": "CVE-2026-31756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31756"
    },
    {
      "name": "CVE-2026-31467",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31467"
    },
    {
      "name": "CVE-2026-23318",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23318"
    },
    {
      "name": "CVE-2026-23368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23368"
    },
    {
      "name": "CVE-2026-31485",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31485"
    },
    {
      "name": "CVE-2026-23475",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23475"
    },
    {
      "name": "CVE-2026-31578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31578"
    },
    {
      "name": "CVE-2025-40147",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40147"
    },
    {
      "name": "CVE-2026-31754",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31754"
    },
    {
      "name": "CVE-2026-31402",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31402"
    },
    {
      "name": "CVE-2025-40219",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40219"
    },
    {
      "name": "CVE-2026-23426",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23426"
    },
    {
      "name": "CVE-2026-31758",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31758"
    },
    {
      "name": "CVE-2025-68736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68736"
    },
    {
      "name": "CVE-2025-71265",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71265"
    },
    {
      "name": "CVE-2026-23450",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23450"
    },
    {
      "name": "CVE-2026-23281",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23281"
    },
    {
      "name": "CVE-2026-31530",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31530"
    },
    {
      "name": "CVE-2025-71221",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71221"
    },
    {
      "name": "CVE-2026-31685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31685"
    },
    {
      "name": "CVE-2026-31416",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31416"
    },
    {
      "name": "CVE-2026-31656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31656"
    },
    {
      "name": "CVE-2025-39764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39764"
    },
    {
      "name": "CVE-2026-31453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31453"
    },
    {
      "name": "CVE-2026-23004",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23004"
    },
    {
      "name": "CVE-2026-31593",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31593"
    },
    {
      "name": "CVE-2026-23438",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23438"
    },
    {
      "name": "CVE-2026-23293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23293"
    },
    {
      "name": "CVE-2026-23463",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23463"
    },
    {
      "name": "CVE-2026-23227",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23227"
    },
    {
      "name": "CVE-2026-23454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23454"
    },
    {
      "name": "CVE-2026-31405",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31405"
    },
    {
      "name": "CVE-2026-43054",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43054"
    },
    {
      "name": "CVE-2026-23465",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23465"
    },
    {
      "name": "CVE-2026-31664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31664"
    },
    {
      "name": "CVE-2026-31542",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31542"
    },
    {
      "name": "CVE-2026-31473",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31473"
    },
    {
      "name": "CVE-2026-23297",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23297"
    },
    {
      "name": "CVE-2026-31556",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31556"
    },
    {
      "name": "CVE-2026-31528",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31528"
    },
    {
      "name": "CVE-2026-31448",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31448"
    },
    {
      "name": "CVE-2026-31597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31597"
    },
    {
      "name": "CVE-2025-21709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21709"
    },
    {
      "name": "CVE-2026-22981",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22981"
    },
    {
      "name": "CVE-2026-31550",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31550"
    },
    {
      "name": "CVE-2026-31487",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31487"
    },
    {
      "name": "CVE-2026-23290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23290"
    },
    {
      "name": "CVE-2026-31549",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31549"
    },
    {
      "name": "CVE-2026-31752",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31752"
    },
    {
      "name": "CVE-2025-40016",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40016"
    },
    {
      "name": "CVE-2026-31787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31787"
    },
    {
      "name": "CVE-2025-38626",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38626"
    },
    {
      "name": "CVE-2026-23303",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23303"
    },
    {
      "name": "CVE-2026-43011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43011"
    },
    {
      "name": "CVE-2025-68175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68175"
    },
    {
      "name": "CVE-2026-31396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31396"
    },
    {
      "name": "CVE-2026-23461",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23461"
    },
    {
      "name": "CVE-2026-31680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31680"
    },
    {
      "name": "CVE-2026-31586",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31586"
    },
    {
      "name": "CVE-2026-23340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23340"
    },
    {
      "name": "CVE-2026-43046",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43046"
    },
    {
      "name": "CVE-2025-68334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68334"
    },
    {
      "name": "CVE-2026-31738",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31738"
    },
    {
      "name": "CVE-2026-23441",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23441"
    },
    {
      "name": "CVE-2026-23210",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23210"
    },
    {
      "name": "CVE-2025-40005",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40005"
    },
    {
      "name": "CVE-2026-31751",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31751"
    },
    {
      "name": "CVE-2026-23380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23380"
    },
    {
      "name": "CVE-2026-23383",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23383"
    },
    {
      "name": "CVE-2026-31462",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31462"
    },
    {
      "name": "CVE-2026-23412",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23412"
    },
    {
      "name": "CVE-2026-23439",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23439"
    },
    {
      "name": "CVE-2026-23253",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23253"
    },
    {
      "name": "CVE-2026-43025",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43025"
    },
    {
      "name": "CVE-2026-31581",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31581"
    },
    {
      "name": "CVE-2026-31721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31721"
    },
    {
      "name": "CVE-2026-31617",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31617"
    },
    {
      "name": "CVE-2026-23271",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23271"
    },
    {
      "name": "CVE-2025-68265",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68265"
    },
    {
      "name": "CVE-2026-23434",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23434"
    },
    {
      "name": "CVE-2026-31655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31655"
    },
    {
      "name": "CVE-2026-31611",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31611"
    },
    {
      "name": "CVE-2026-31502",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31502"
    },
    {
      "name": "CVE-2026-31531",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31531"
    },
    {
      "name": "CVE-2026-43018",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43018"
    },
    {
      "name": "CVE-2026-43014",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43014"
    },
    {
      "name": "CVE-2026-31447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31447"
    },
    {
      "name": "CVE-2025-22116",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22116"
    },
    {
      "name": "CVE-2026-23226",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23226"
    },
    {
      "name": "CVE-2026-23285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23285"
    },
    {
      "name": "CVE-2026-31431",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31431"
    },
    {
      "name": "CVE-2026-31645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31645"
    },
    {
      "name": "CVE-2026-23470",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23470"
    },
    {
      "name": "CVE-2026-31599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31599"
    },
    {
      "name": "CVE-2026-43028",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43028"
    },
    {
      "name": "CVE-2026-31511",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31511"
    },
    {
      "name": "CVE-2026-31614",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31614"
    },
    {
      "name": "CVE-2026-23422",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23422"
    },
    {
      "name": "CVE-2026-31482",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31482"
    },
    {
      "name": "CVE-2026-31548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31548"
    },
    {
      "name": "CVE-2026-23304",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23304"
    },
    {
      "name": "CVE-2026-31683",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31683"
    },
    {
      "name": "CVE-2026-23357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23357"
    },
    {
      "name": "CVE-2026-31408",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31408"
    },
    {
      "name": "CVE-2025-38105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38105"
    },
    {
      "name": "CVE-2026-31524",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31524"
    },
    {
      "name": "CVE-2026-31505",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31505"
    },
    {
      "name": "CVE-2026-31668",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31668"
    },
    {
      "name": "CVE-2026-23250",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23250"
    },
    {
      "name": "CVE-2026-23066",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23066"
    },
    {
      "name": "CVE-2026-31478",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31478"
    },
    {
      "name": "CVE-2026-31546",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31546"
    },
    {
      "name": "CVE-2025-38426",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38426"
    },
    {
      "name": "CVE-2025-38436",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38436"
    },
    {
      "name": "CVE-2026-31583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31583"
    },
    {
      "name": "CVE-2025-22117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-22117"
    },
    {
      "name": "CVE-2026-31605",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31605"
    },
    {
      "name": "CVE-2026-23324",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23324"
    },
    {
      "name": "CVE-2026-23347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23347"
    },
    {
      "name": "CVE-2026-23373",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23373"
    },
    {
      "name": "CVE-2026-31516",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31516"
    },
    {
      "name": "CVE-2024-50298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50298"
    },
    {
      "name": "CVE-2026-23317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23317"
    },
    {
      "name": "CVE-2026-43047",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43047"
    },
    {
      "name": "CVE-2026-31389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31389"
    },
    {
      "name": "CVE-2026-31394",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31394"
    },
    {
      "name": "CVE-2026-31786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31786"
    },
    {
      "name": "CVE-2026-31545",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31545"
    },
    {
      "name": "CVE-2026-31681",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31681"
    },
    {
      "name": "CVE-2026-31598",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31598"
    },
    {
      "name": "CVE-2026-23456",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23456"
    },
    {
      "name": "CVE-2026-43033",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43033"
    },
    {
      "name": "CVE-2026-43023",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43023"
    },
    {
      "name": "CVE-2026-23287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23287"
    },
    {
      "name": "CVE-2026-31510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31510"
    },
    {
      "name": "CVE-2026-31622",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31622"
    },
    {
      "name": "CVE-2026-23457",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23457"
    },
    {
      "name": "CVE-2026-31595",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31595"
    },
    {
      "name": "CVE-2026-31496",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31496"
    },
    {
      "name": "CVE-2026-31642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31642"
    },
    {
      "name": "CVE-2026-23399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23399"
    },
    {
      "name": "CVE-2026-23334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23334"
    },
    {
      "name": "CVE-2025-40242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40242"
    },
    {
      "name": "CVE-2026-31659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31659"
    },
    {
      "name": "CVE-2026-23401",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23401"
    },
    {
      "name": "CVE-2025-71239",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71239"
    },
    {
      "name": "CVE-2026-23207",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23207"
    },
    {
      "name": "CVE-2026-43057",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43057"
    },
    {
      "name": "CVE-2026-43030",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43030"
    },
    {
      "name": "CVE-2026-23138",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23138"
    },
    {
      "name": "CVE-2025-38250",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38250"
    },
    {
      "name": "CVE-2026-31525",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31525"
    },
    {
      "name": "CVE-2026-31638",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31638"
    },
    {
      "name": "CVE-2026-31588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31588"
    },
    {
      "name": "CVE-2026-23391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23391"
    },
    {
      "name": "CVE-2026-31415",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31415"
    },
    {
      "name": "CVE-2026-31647",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31647"
    },
    {
      "name": "CVE-2024-47809",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47809"
    },
    {
      "name": "CVE-2026-23204",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23204"
    },
    {
      "name": "CVE-2026-23462",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23462"
    },
    {
      "name": "CVE-2026-31563",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31563"
    },
    {
      "name": "CVE-2026-23273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23273"
    },
    {
      "name": "CVE-2026-23372",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23372"
    },
    {
      "name": "CVE-2026-31693",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31693"
    },
    {
      "name": "CVE-2026-31689",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31689"
    },
    {
      "name": "CVE-2026-23319",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23319"
    },
    {
      "name": "CVE-2024-56719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-56719"
    },
    {
      "name": "CVE-2026-31566",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31566"
    },
    {
      "name": "CVE-2026-31494",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31494"
    },
    {
      "name": "CVE-2026-31565",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31565"
    },
    {
      "name": "CVE-2026-23270",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23270"
    },
    {
      "name": "CVE-2026-31763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31763"
    },
    {
      "name": "CVE-2026-23279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23279"
    },
    {
      "name": "CVE-2026-23466",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23466"
    },
    {
      "name": "CVE-2026-31616",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31616"
    },
    {
      "name": "CVE-2026-31670",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31670"
    },
    {
      "name": "CVE-2026-23240",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23240"
    },
    {
      "name": "CVE-2026-23244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23244"
    },
    {
      "name": "CVE-2026-23246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23246"
    },
    {
      "name": "CVE-2026-31422",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31422"
    },
    {
      "name": "CVE-2026-23286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23286"
    },
    {
      "name": "CVE-2026-23359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23359"
    },
    {
      "name": "CVE-2026-31533",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31533"
    },
    {
      "name": "CVE-2026-23298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23298"
    },
    {
      "name": "CVE-2026-31469",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31469"
    },
    {
      "name": "CVE-2026-31498",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31498"
    },
    {
      "name": "CVE-2026-31615",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31615"
    },
    {
      "name": "CVE-2026-31520",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31520"
    },
    {
      "name": "CVE-2026-31449",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31449"
    },
    {
      "name": "CVE-2026-31418",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31418"
    },
    {
      "name": "CVE-2026-23296",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23296"
    },
    {
      "name": "CVE-2026-31427",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31427"
    },
    {
      "name": "CVE-2026-31555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31555"
    },
    {
      "name": "CVE-2026-31594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31594"
    },
    {
      "name": "CVE-2026-31392",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31392"
    },
    {
      "name": "CVE-2026-23360",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23360"
    },
    {
      "name": "CVE-2025-40150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40150"
    },
    {
      "name": "CVE-2026-31580",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31580"
    },
    {
      "name": "CVE-2026-31515",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31515"
    },
    {
      "name": "CVE-2026-31661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31661"
    },
    {
      "name": "CVE-2026-31737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31737"
    },
    {
      "name": "CVE-2025-38627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38627"
    },
    {
      "name": "CVE-2026-31606",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31606"
    },
    {
      "name": "CVE-2026-43017",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43017"
    },
    {
      "name": "CVE-2024-14027",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-14027"
    },
    {
      "name": "CVE-2025-71267",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71267"
    },
    {
      "name": "CVE-2026-43043",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43043"
    },
    {
      "name": "CVE-2025-37945",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37945"
    },
    {
      "name": "CVE-2026-23308",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23308"
    },
    {
      "name": "CVE-2026-31684",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31684"
    },
    {
      "name": "CVE-2026-23396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23396"
    },
    {
      "name": "CVE-2026-31423",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31423"
    },
    {
      "name": "CVE-2026-31625",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31625"
    },
    {
      "name": "CVE-2026-43051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43051"
    },
    {
      "name": "CVE-2026-31759",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31759"
    },
    {
      "name": "CVE-2026-31432",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31432"
    },
    {
      "name": "CVE-2026-23370",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23370"
    },
    {
      "name": "CVE-2025-38303",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38303"
    },
    {
      "name": "CVE-2026-23302",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23302"
    },
    {
      "name": "CVE-2026-23414",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23414"
    },
    {
      "name": "CVE-2026-31781",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31781"
    },
    {
      "name": "CVE-2026-23315",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23315"
    },
    {
      "name": "CVE-2026-31523",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31523"
    },
    {
      "name": "CVE-2026-31669",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31669"
    },
    {
      "name": "CVE-2026-31450",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31450"
    },
    {
      "name": "CVE-2026-31671",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31671"
    },
    {
      "name": "CVE-2026-31749",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31749"
    },
    {
      "name": "CVE-2026-43024",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43024"
    },
    {
      "name": "CVE-2026-23239",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23239"
    },
    {
      "name": "CVE-2026-23352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23352"
    },
    {
      "name": "CVE-2026-31720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31720"
    },
    {
      "name": "CVE-2026-31554",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31554"
    },
    {
      "name": "CVE-2026-31748",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31748"
    },
    {
      "name": "CVE-2026-23367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23367"
    },
    {
      "name": "CVE-2026-31628",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31628"
    },
    {
      "name": "CVE-2026-23427",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23427"
    },
    {
      "name": "CVE-2026-31662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31662"
    },
    {
      "name": "CVE-2025-71067",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71067"
    },
    {
      "name": "CVE-2026-31768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31768"
    },
    {
      "name": "CVE-2026-43026",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43026"
    },
    {
      "name": "CVE-2026-31480",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31480"
    },
    {
      "name": "CVE-2026-23255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23255"
    },
    {
      "name": "CVE-2026-23446",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23446"
    },
    {
      "name": "CVE-2026-23417",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23417"
    },
    {
      "name": "CVE-2026-43035",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43035"
    },
    {
      "name": "CVE-2026-31561",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31561"
    },
    {
      "name": "CVE-2026-31627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31627"
    },
    {
      "name": "CVE-2025-71269",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71269"
    },
    {
      "name": "CVE-2026-31429",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31429"
    },
    {
      "name": "CVE-2026-31665",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31665"
    },
    {
      "name": "CVE-2025-40358",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40358"
    },
    {
      "name": "CVE-2026-23300",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23300"
    },
    {
      "name": "CVE-2026-23444",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23444"
    },
    {
      "name": "CVE-2026-31391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31391"
    },
    {
      "name": "CVE-2026-31406",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31406"
    },
    {
      "name": "CVE-2026-31672",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31672"
    },
    {
      "name": "CVE-2026-31401",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31401"
    },
    {
      "name": "CVE-2026-31780",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31780"
    },
    {
      "name": "CVE-2026-23243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23243"
    },
    {
      "name": "CVE-2026-31479",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31479"
    },
    {
      "name": "CVE-2023-53510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-53510"
    },
    {
      "name": "CVE-2026-31675",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31675"
    },
    {
      "name": "CVE-2026-31521",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31521"
    },
    {
      "name": "CVE-2026-23363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23363"
    },
    {
      "name": "CVE-2026-31626",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31626"
    },
    {
      "name": "CVE-2026-23445",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23445"
    },
    {
      "name": "CVE-2026-31634",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31634"
    },
    {
      "name": "CVE-2026-31610",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31610"
    },
    {
      "name": "CVE-2024-47736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47736"
    },
    {
      "name": "CVE-2026-31412",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31412"
    },
    {
      "name": "CVE-2026-43032",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43032"
    },
    {
      "name": "CVE-2026-23362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23362"
    },
    {
      "name": "CVE-2026-23379",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23379"
    },
    {
      "name": "CVE-2026-31648",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31648"
    },
    {
      "name": "CVE-2026-31421",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31421"
    },
    {
      "name": "CVE-2026-31677",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31677"
    },
    {
      "name": "CVE-2023-53545",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-53545"
    },
    {
      "name": "CVE-2026-23381",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23381"
    },
    {
      "name": "CVE-2026-31518",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31518"
    },
    {
      "name": "CVE-2026-31470",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31470"
    },
    {
      "name": "CVE-2026-31686",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31686"
    },
    {
      "name": "CVE-2026-31660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31660"
    },
    {
      "name": "CVE-2026-23392",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23392"
    },
    {
      "name": "CVE-2026-23245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23245"
    },
    {
      "name": "CVE-2026-31728",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31728"
    },
    {
      "name": "CVE-2024-49998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-49998"
    },
    {
      "name": "CVE-2026-31403",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31403"
    },
    {
      "name": "CVE-2026-31400",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31400"
    },
    {
      "name": "CVE-2026-31512",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31512"
    },
    {
      "name": "CVE-2026-23330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23330"
    },
    {
      "name": "CVE-2026-31726",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31726"
    },
    {
      "name": "CVE-2026-31504",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31504"
    },
    {
      "name": "CVE-2026-31773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31773"
    },
    {
      "name": "CVE-2026-23364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23364"
    },
    {
      "name": "CVE-2026-31607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31607"
    },
    {
      "name": "CVE-2026-23242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23242"
    },
    {
      "name": "CVE-2026-43015",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43015"
    },
    {
      "name": "CVE-2026-31509",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31509"
    },
    {
      "name": "CVE-2026-31679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31679"
    },
    {
      "name": "CVE-2025-40135",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40135"
    },
    {
      "name": "CVE-2026-31637",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31637"
    },
    {
      "name": "CVE-2026-31779",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31779"
    },
    {
      "name": "CVE-2026-31612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31612"
    },
    {
      "name": "CVE-2026-23428",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23428"
    },
    {
      "name": "CVE-2026-23274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23274"
    },
    {
      "name": "CVE-2026-31590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31590"
    },
    {
      "name": "CVE-2026-22993",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22993"
    },
    {
      "name": "CVE-2026-23361",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23361"
    },
    {
      "name": "CVE-2025-38192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38192"
    },
    {
      "name": "CVE-2026-43020",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43020"
    },
    {
      "name": "CVE-2026-31417",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31417"
    },
    {
      "name": "CVE-2026-43041",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43041"
    },
    {
      "name": "CVE-2026-31761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31761"
    },
    {
      "name": "CVE-2026-31466",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31466"
    },
    {
      "name": "CVE-2026-31527",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31527"
    },
    {
      "name": "CVE-2026-31604",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31604"
    },
    {
      "name": "CVE-2026-23448",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23448"
    },
    {
      "name": "CVE-2026-22985",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22985"
    },
    {
      "name": "CVE-2025-71152",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71152"
    },
    {
      "name": "CVE-2026-31414",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31414"
    },
    {
      "name": "CVE-2026-31584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31584"
    },
    {
      "name": "CVE-2026-31778",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31778"
    },
    {
      "name": "CVE-2025-38704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38704"
    },
    {
      "name": "CVE-2026-31557",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31557"
    },
    {
      "name": "CVE-2026-31426",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31426"
    },
    {
      "name": "CVE-2026-23354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23354"
    },
    {
      "name": "CVE-2026-23325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23325"
    },
    {
      "name": "CVE-2025-21676",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-21676"
    },
    {
      "name": "CVE-2026-43040",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43040"
    },
    {
      "name": "CVE-2026-23440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23440"
    },
    {
      "name": "CVE-2026-31552",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31552"
    },
    {
      "name": "CVE-2026-23284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23284"
    },
    {
      "name": "CVE-2026-31488",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31488"
    },
    {
      "name": "CVE-2026-23278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23278"
    },
    {
      "name": "CVE-2026-31532",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31532"
    },
    {
      "name": "CVE-2026-23397",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23397"
    },
    {
      "name": "CVE-2026-23452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23452"
    },
    {
      "name": "CVE-2026-23474",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23474"
    },
    {
      "name": "CVE-2026-31434",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31434"
    },
    {
      "name": "CVE-2026-23343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23343"
    },
    {
      "name": "CVE-2026-31430",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31430"
    },
    {
      "name": "CVE-2026-23336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23336"
    },
    {
      "name": "CVE-2026-31497",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31497"
    },
    {
      "name": "CVE-2026-31682",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31682"
    },
    {
      "name": "CVE-2026-31570",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31570"
    },
    {
      "name": "CVE-2026-23289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23289"
    },
    {
      "name": "CVE-2026-31755",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31755"
    },
    {
      "name": "CVE-2026-23292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23292"
    },
    {
      "name": "CVE-2026-23141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23141"
    },
    {
      "name": "CVE-2026-31451",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31451"
    },
    {
      "name": "CVE-2026-23277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23277"
    },
    {
      "name": "CVE-2026-31399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31399"
    },
    {
      "name": "CVE-2026-22986",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22986"
    },
    {
      "name": "CVE-2026-31489",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31489"
    },
    {
      "name": "CVE-2026-31441",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31441"
    },
    {
      "name": "CVE-2026-23455",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23455"
    },
    {
      "name": "CVE-2026-23316",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23316"
    },
    {
      "name": "CVE-2026-23251",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23251"
    },
    {
      "name": "CVE-2026-23335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23335"
    },
    {
      "name": "CVE-2026-31551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31551"
    },
    {
      "name": "CVE-2026-31495",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31495"
    },
    {
      "name": "CVE-2026-23252",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23252"
    },
    {
      "name": "CVE-2026-23369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23369"
    },
    {
      "name": "CVE-2026-31507",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31507"
    },
    {
      "name": "CVE-2026-23389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23389"
    },
    {
      "name": "CVE-2026-31762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31762"
    },
    {
      "name": "CVE-2026-31788",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31788"
    },
    {
      "name": "CVE-2026-31411",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31411"
    },
    {
      "name": "CVE-2026-31428",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31428"
    },
    {
      "name": "CVE-2026-23420",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23420"
    },
    {
      "name": "CVE-2026-23388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23388"
    },
    {
      "name": "CVE-2025-39748",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39748"
    },
    {
      "name": "CVE-2026-23449",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23449"
    },
    {
      "name": "CVE-2025-39863",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39863"
    },
    {
      "name": "CVE-2025-71266",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71266"
    },
    {
      "name": "CVE-2026-31492",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31492"
    },
    {
      "name": "CVE-2026-43037",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43037"
    },
    {
      "name": "CVE-2026-23070",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23070"
    },
    {
      "name": "CVE-2026-31596",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31596"
    },
    {
      "name": "CVE-2026-31666",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31666"
    },
    {
      "name": "CVE-2026-31676",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31676"
    },
    {
      "name": "CVE-2026-23442",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23442"
    },
    {
      "name": "CVE-2026-31476",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31476"
    },
    {
      "name": "CVE-2026-31603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31603"
    },
    {
      "name": "CVE-2026-23104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23104"
    },
    {
      "name": "CVE-2026-23393",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23393"
    },
    {
      "name": "CVE-2026-23458",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23458"
    },
    {
      "name": "CVE-2026-23313",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23313"
    },
    {
      "name": "CVE-2026-31649",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31649"
    },
    {
      "name": "CVE-2026-31674",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31674"
    },
    {
      "name": "CVE-2026-31393",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31393"
    },
    {
      "name": "CVE-2026-23310",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23310"
    },
    {
      "name": "CVE-2026-31577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31577"
    },
    {
      "name": "CVE-2026-43027",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43027"
    },
    {
      "name": "CVE-2025-68206",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68206"
    },
    {
      "name": "CVE-2026-31576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31576"
    },
    {
      "name": "CVE-2026-31506",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31506"
    },
    {
      "name": "CVE-2026-23339",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23339"
    },
    {
      "name": "CVE-2026-31433",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31433"
    },
    {
      "name": "CVE-2026-31458",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31458"
    },
    {
      "name": "CVE-2026-31776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31776"
    },
    {
      "name": "CVE-2026-31575",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31575"
    },
    {
      "name": "CVE-2026-23321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23321"
    },
    {
      "name": "CVE-2026-23460",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23460"
    },
    {
      "name": "CVE-2026-31678",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31678"
    },
    {
      "name": "CVE-2026-31587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31587"
    },
    {
      "name": "CVE-2025-71161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71161"
    },
    {
      "name": "CVE-2026-31540",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31540"
    },
    {
      "name": "CVE-2026-23395",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23395"
    },
    {
      "name": "CVE-2026-31651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31651"
    },
    {
      "name": "CVE-2023-53228",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-53228"
    },
    {
      "name": "CVE-2026-23100",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23100"
    },
    {
      "name": "CVE-2026-31503",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31503"
    },
    {
      "name": "CVE-2026-31657",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31657"
    },
    {
      "name": "CVE-2026-31747",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31747"
    },
    {
      "name": "CVE-2026-31455",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31455"
    },
    {
      "name": "CVE-2026-31624",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31624"
    },
    {
      "name": "CVE-2026-23306",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23306"
    },
    {
      "name": "CVE-2026-31585",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31585"
    },
    {
      "name": "CVE-2026-31474",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31474"
    },
    {
      "name": "CVE-2026-23374",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23374"
    },
    {
      "name": "CVE-2026-23378",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23378"
    },
    {
      "name": "CVE-2026-31646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31646"
    },
    {
      "name": "CVE-2026-31519",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31519"
    },
    {
      "name": "CVE-2026-23464",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23464"
    },
    {
      "name": "CVE-2026-31439",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31439"
    },
    {
      "name": "CVE-2026-23291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23291"
    },
    {
      "name": "CVE-2026-23413",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23413"
    },
    {
      "name": "CVE-2026-31436",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31436"
    },
    {
      "name": "CVE-2025-68239",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-68239"
    },
    {
      "name": "CVE-2026-23382",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23382"
    },
    {
      "name": "CVE-2026-31410",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31410"
    },
    {
      "name": "CVE-2026-31446",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31446"
    },
    {
      "name": "CVE-2026-31644",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31644"
    },
    {
      "name": "CVE-2026-23113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23113"
    },
    {
      "name": "CVE-2026-23157",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23157"
    },
    {
      "name": "CVE-2026-31464",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31464"
    },
    {
      "name": "CVE-2026-31500",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31500"
    },
    {
      "name": "CVE-2026-31695",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31695"
    },
    {
      "name": "CVE-2025-37980",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37980"
    },
    {
      "name": "CVE-2026-23231",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23231"
    },
    {
      "name": "CVE-2025-40261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40261"
    },
    {
      "name": "CVE-2026-31558",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31558"
    },
    {
      "name": "CVE-2026-23312",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23312"
    },
    {
      "name": "CVE-2026-31639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31639"
    },
    {
      "name": "CVE-2026-31508",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31508"
    },
    {
      "name": "CVE-2026-23365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23365"
    },
    {
      "name": "CVE-2026-23419",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23419"
    },
    {
      "name": "CVE-2026-31424",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31424"
    },
    {
      "name": "CVE-2026-23375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23375"
    },
    {
      "name": "CVE-2026-23356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23356"
    },
    {
      "name": "CVE-2026-23307",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23307"
    },
    {
      "name": "CVE-2025-38162",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38162"
    },
    {
      "name": "CVE-2026-31477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31477"
    },
    {
      "name": "CVE-2026-23249",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23249"
    },
    {
      "name": "CVE-2026-43038",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43038"
    },
    {
      "name": "CVE-2026-43013",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43013"
    },
    {
      "name": "CVE-2026-31454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31454"
    },
    {
      "name": "CVE-2025-38659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38659"
    },
    {
      "name": "CVE-2026-23386",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23386"
    },
    {
      "name": "CVE-2026-31452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31452"
    },
    {
      "name": "CVE-2026-31407",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31407"
    },
    {
      "name": "CVE-2026-23398",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23398"
    },
    {
      "name": "CVE-2026-31602",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31602"
    },
    {
      "name": "CVE-2026-31425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31425"
    },
    {
      "name": "CVE-2026-31440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31440"
    },
    {
      "name": "CVE-2026-23276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23276"
    },
    {
      "name": "CVE-2026-31629",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31629"
    },
    {
      "name": "CVE-2026-23351",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23351"
    },
    {
      "name": "CVE-2026-43050",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43050"
    },
    {
      "name": "CVE-2026-31438",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31438"
    },
    {
      "name": "CVE-2026-23154",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23154"
    },
    {
      "name": "CVE-2026-31673",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31673"
    },
    {
      "name": "CVE-2026-31667",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31667"
    }
  ],
  "initial_release_date": "2026-05-07T00:00:00",
  "last_revision_date": "2026-05-07T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0548",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-05-07T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de Debian. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un d\u00e9ni de service.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian",
  "vendor_advisories": [
    {
      "published_at": "2026-05-01",
      "title": "Bulletin de s\u00e9curit\u00e9 Debian msg00154",
      "url": "https://lists.debian.org/debian-security-announce/2026/msg00154.html"
    },
    {
      "published_at": "2026-04-30",
      "title": "Bulletin de s\u00e9curit\u00e9 Debian msg00148",
      "url": "https://lists.debian.org/debian-security-announce/2026/msg00148.html"
    }
  ]
}

MSRC_CVE-2026-31407

Vulnerability from csaf_microsoft - Published: 2026-04-02 00:00 - Updated: 2026-05-01 14:38

Summary

netfilter: conntrack: add missing netlink policy validations

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

CVE-2026-31407

None Available There is no fix available for this vulnerability as of now

Vendor Fix 0:6.6.137.1-1.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade https://learn.microsoft.com/en-us/azure/azure-lin…

References

URL

FKIE_CVE-2026-31407

Vulnerability from fkie_nvd - Published: 2026-04-06 08:16 - Updated: 2026-04-27 14:16

Severity ?

7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Summary

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/0fbae1e74493d5a160a70c51aeba035d8266ea7d
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/67c53c1978cef3c504237275e39c857e2f6af56e
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/9174d28f3f15d8c4962f5980c0be167633880443
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/c5e918390002edf0cff80a0e7ce1f86f16a9507c
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/f900e1d77ee0ef87bfb5ab3fe60f0b3d8ad5ba05

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: conntrack: add missing netlink policy validations\n\nHyunwoo Kim reports out-of-bounds access in sctp and ctnetlink.\n\nThese attributes are used by the kernel without any validation.\nExtend the netlink policies accordingly.\n\nQuoting the reporter:\n  nlattr_to_sctp() assigns the user-supplied CTA_PROTOINFO_SCTP_STATE\n  value directly to ct-\u003eproto.sctp.state without checking that it is\n  within the valid range. [..]\n\n  and: ... with exp-\u003edir = 100, the access at\n  ct-\u003emaster-\u003etuplehash[100] reads 5600 bytes past the start of a\n  320-byte nf_conn object, causing a slab-out-of-bounds read confirmed by\n  UBSAN."
    }
  ],
  "id": "CVE-2026-31407",
  "lastModified": "2026-04-27T14:16:36.813",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.2,
        "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-04-06T08:16:38.623",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/0fbae1e74493d5a160a70c51aeba035d8266ea7d"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/67c53c1978cef3c504237275e39c857e2f6af56e"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/9174d28f3f15d8c4962f5980c0be167633880443"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/c5e918390002edf0cff80a0e7ce1f86f16a9507c"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/f900e1d77ee0ef87bfb5ab3fe60f0b3d8ad5ba05"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Awaiting Analysis"
}

GHSA-CF8W-8G67-48GV

Vulnerability from github – Published: 2026-04-06 09:31 – Updated: 2026-04-27 15:30

Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: conntrack: add missing netlink policy validations

Hyunwoo Kim reports out-of-bounds access in sctp and ctnetlink.

These attributes are used by the kernel without any validation. Extend the netlink policies accordingly.

Quoting the reporter: nlattr_to_sctp() assigns the user-supplied CTA_PROTOINFO_SCTP_STATE value directly to ct->proto.sctp.state without checking that it is within the valid range. [..]

and: ... with exp->dir = 100, the access at ct->master->tuplehash[100] reads 5600 bytes past the start of a 320-byte nf_conn object, causing a slab-out-of-bounds read confirmed by UBSAN.

Severity ?

7.1 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2026-31407"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-04-06T08:16:38Z",
    "severity": "HIGH"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: conntrack: add missing netlink policy validations\n\nHyunwoo Kim reports out-of-bounds access in sctp and ctnetlink.\n\nThese attributes are used by the kernel without any validation.\nExtend the netlink policies accordingly.\n\nQuoting the reporter:\n  nlattr_to_sctp() assigns the user-supplied CTA_PROTOINFO_SCTP_STATE\n  value directly to ct-\u003eproto.sctp.state without checking that it is\n  within the valid range. [..]\n\n  and: ... with exp-\u003edir = 100, the access at\n  ct-\u003emaster-\u003etuplehash[100] reads 5600 bytes past the start of a\n  320-byte nf_conn object, causing a slab-out-of-bounds read confirmed by\n  UBSAN.",
  "id": "GHSA-cf8w-8g67-48gv",
  "modified": "2026-04-27T15:30:33Z",
  "published": "2026-04-06T09:31:42Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31407"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/0fbae1e74493d5a160a70c51aeba035d8266ea7d"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/67c53c1978cef3c504237275e39c857e2f6af56e"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/9174d28f3f15d8c4962f5980c0be167633880443"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/c5e918390002edf0cff80a0e7ce1f86f16a9507c"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/f900e1d77ee0ef87bfb5ab3fe60f0b3d8ad5ba05"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-31407 (GCVE-0-2026-31407)

CERTFR-2026-AVI-0548

Solutions

MSRC_CVE-2026-31407

FKIE_CVE-2026-31407

GHSA-CF8W-8G67-48GV

Tags

Sightings

Nomenclature