VDB
DEBIAN-CVE-2026-31418
DEBIAN-CVE-2026-31418
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: drop logically empty buckets in mtype_del mtype_del() counts empty slots below n->pos in k, but it only drops the bucket when both n->pos and k are zero. This misses buckets whose live entries have all been removed while n->pos still points past deleted slots. Treat a bucket as empty when all positions below n->pos are unused and release it directly instead of shrinking it further.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | linux | 6.16.12-1, 6.19, 6.19 |
| Debian:13 | linux | 6.12.41-1, 6.12.41-1, 6.12.38-1 |
| Debian:11 | linux-6.1 | 6.1.164-1, 0, 6.1.106-3 |
| Debian:12 | linux | 6.1.55-1, 6.1.52-1, 6.1.38-4 |
| Debian:11 | linux | 6.1.159-1, 6.1.162-1, 6.1.164-1 |
Exploit Intelligence
- 4593.2.0.yml (github-poc)
- 4628.1.0.yml (github-poc)
Timeline
- Apr 13, 2026 CVE Published
- May 2, 2026 CVE Updated