CVE-2026-23455

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the netfilter module, specifically in the nf conntrack h323 component. The DecodeQ931() function is susceptible to an out-of-bounds read condition. This occurs when the UserUserIE code path processes a packet with an encoded length of 0. The length is decremented by 1, resulting in a wrap-around to -1, which is then incorrectly used as a large value in the decoder. This can lead to reading data outside the allocated memory boundaries.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2026:21706

ALSA-2026:21745

CVE-2026-23455

ECHO-0A50-5C88-4815

OESA-2026-2172

OESA-2026-2173

OESA-2026-2176

Affected Products

Linux Kernel

CVE-2026-23455

Weakness Enumeration

Related Identifiers

Affected Products

References · 89