CVE-2026-43040

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An information leak exists when processing Router Advertisements with user options. The kernel constructs an 'RTM NEWNDUSEROPT' netlink message using the nduseroptmsg struct, which contains three padding fields (nduseropt padX) that are not initialized to zero, potentially exposing kernel data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.