PT-2026-40031 · Unknown · Pam Authnft
Published
2026-05-12
·
Updated
2026-05-13
·
CVE-2026-43916
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
pam authnft versions prior to 0.2.0-alpha
Description
pam authnft is a PAM session module that binds nftables firewall rules to authenticated sessions using cgroupv2 inodes. A heap buffer over-read exists in the
peer lookup tcp() function. This occurs when a specially crafted NETLINK SOCK DIAG reply bypasses the message-size check, leading to a dereference beyond the end of the memory allocation.Recommendations
Update to version 0.2.0-alpha.
Fix
Out of bounds Read
Integer Underflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Pam Authnft