CVE-2026-31405

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the dvb-net module related to out-of-bounds access in ULE extension header tables. The ule mandatory ext handlers[] and ule optional ext handlers[] tables in the handle one ule extension() function are susceptible to an out-of-bounds read when the htype index, derived from network data (ule sndu type & 0x00FF), equals 255. This occurs because the tables are defined with 255 valid indices (0-254), while the network data can produce a value of 255. Accessing the table with an index of 255 leads to an out-of-bounds read, potentially allowing the execution of arbitrary code. The issue is resolved by adding a bounds check on htype before accessing the tables, causing out-of-range values to discard the SNDU.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.