CVE-2026-43028 — Vulnetix

CVE-2026-43028 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: ensure names are nul-terminated Reject names that lack a \0 character before feeding them to functions that expect c-strings. Fixes tag is the most recent commit that needs this change.

EPSS 0.01% · 2.5th percentile

Risk Scores

EPSS Score

0.01%

2.5th percentile

Affected Products

Vendor	Product	Versions
linux	linux_kernel	4.5, 4.5, 4.5
Linux	Linux	c38c4597e4bf3e99860eac98211748e1ecb0e139, c38c4597e4bf3e99860eac98211748e1ecb0e139, c38c4597e4bf3e99860eac98211748e1ecb0e139

Timeline

May 1, 2026 CVE Published
May 11, 2026 CVE Updated
May 18, 2026 EPSS Score
May 19, 2026 EPSS Score
May 20, 2026 EPSS Score
May 21, 2026 EPSS Score
May 22, 2026 EPSS Score
May 23, 2026 EPSS Score
May 24, 2026 EPSS Score
May 25, 2026 EPSS Score
May 26, 2026 EPSS Score
May 27, 2026 EPSS Score

References

https://git.kernel.org/stable/c/bcac50ea0a29d430eedc5ac87b215393b567baa9 url
https://git.kernel.org/stable/c/ea01c1b219f5a11c66918abaa6f052e5a74041d6 url
https://git.kernel.org/stable/c/aa6cd4a8863391e0a64f62d8922cb0af732a2cf2 url
https://git.kernel.org/stable/c/c2d4a3abb15ca14716c6d8b9ffcbcd7c63626af4 url
https://git.kernel.org/stable/c/673bbd36cba21d10a10f0932f479df7468e26fbb url
https://git.kernel.org/stable/c/f419bdc205894750f4d3ec042bc87a1b9cde1351 url
https://git.kernel.org/stable/c/73124608172890306b85f2206d8b3cac20e324f1 url
https://git.kernel.org/stable/c/a958a4f90ddd7de0800b33ca9d7b886b7d40f74e url
https://lists.debian.org/debian-lts-announce/2026/05/msg00004.html advisory
https://lists.debian.org/debian-lts-announce/2026/05/msg00005.html advisory
https://lists.debian.org/debian-security-announce/2026/msg00154.html advisory
https://lists.debian.org/debian-security-announce/2026/msg00148.html advisory
https://lists.debian.org/debian-lts-announce/2026/05/msg00051.html advisory
https://lists.debian.org/debian-lts-announce/2026/05/msg00052.html advisory

Open in Interactive Console →