CVE-2026-43036

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the gso features check() function, which is called from netif skb features(). The issue occurs when the system reads iph->frag off to determine if mangleid features should be cleared. Accessing the IPv4 header through ip hdr() or inner ip hdr() relies on header offsets that may not be safe for direct dereference, particularly for packets injected from PF PACKET paths, potentially leading to the use of uninitialized values.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.