CVE-2026-43453

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A stack out-of-bounds read exists in the netfilter component within the pipapo drop() function. The issue occurs because the function passes rulemap[i + 1].n to pipapo unmap() as the to offset argument during every iteration, including the final one where i equals m->field count - 1. This results in reading one element beyond the end of the stack-allocated rulemap array, which is defined with a maximum size of 16 fields. Although pipapo unmap() may return early when is last is true, the argument is evaluated at the call site before the function executes, leading to the out-of-bounds read.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.