CVE-2026-43450

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An out-of-bounds read exists in the nfnl cthelper dump table() function within the netfilter nfnetlink cthelper component. The issue occurs when a helper saved in cb->args[1] is deleted between dump rounds, causing the goto restart block to jump back into the loop body while bypassing the bounds check. This results in an 8-byte out-of-bounds read on nf ct helper hash[nf ct helper hsize].

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.