CVE-2026-31682

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the br nd send() function where neighbour discovery options are parsed from ns->opt[] under the assumption that these options reside in the linear part of the request. Because callers only guarantee the availability of the ICMPv6 header and target address, the option area may remain non-linear. This can lead to the system accessing data beyond the linear buffer during parsing.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.