VDB
DEBIAN-CVE-2026-31416
DEBIAN-CVE-2026-31416
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: account for netlink header size This is a followup to an old bug fix: NLMSG_DONE needs to account for the netlink header size, not just the attribute size. This can result in a WARN splat + drop of the netlink message, but other than this there are no ill effects.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | linux | *, 0, 6.12.38-1 |
| Debian:11 | linux | 5.16.7-2, 5.14.12-1, 5.14.16-1 |
| Debian:13 | linux | 6.12.57-1, 6.12.43-1, 6.12.43-1~bpo12+1 |
| Debian:11 | linux-6.1 | 6.1.106-3, 6.1.106-3, 6.1.106-3 |
| Debian:12 | linux | 6.11.5-1, 6.11.5-1~bpo12+1, 6.11.7-1 |
Timeline
- Apr 13, 2026 CVE Published
- May 2, 2026 CVE Updated