CVE-2026-43254

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the ovpn tcp recv function when processing TCP stream data. The implementation contains two primary flaws: a header offset overflow and unaligned protocol headers. The header offset overflow occurs when using pskb pull with large offsets on coalesced skbs, causing the network header storage to be exceeded and resulting in packet drops. Additionally, extracting packets from arbitrary positions in the TCP stream provides no alignment guarantees, which leads to performance penalties on architectures that lack efficient unaligned access. This is further complicated by a 2-byte length prefix on TCP packets that misaligns subsequent 4-byte opcode and packet ID fields.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.