CVE-2026-31407

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in its netfilter component related to conntrack and missing netlink policy validations. Specifically, the nlattr to sctp() function improperly handles user-supplied CTA PROTOINFO SCTP STATE values, potentially leading to an out-of-bounds access. This issue can occur when processing netlink attributes without proper validation, resulting in a slab-out-of-bounds read. The vulnerability affects the ctnetlink functionality.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.