CVE-2026-43028

HIGH

netfilter: x_tables: ensure names are nul-terminated

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: ensure names are nul-terminated Reject names that lack a \0 character before feeding them to functions that expect c-strings. Fixes tag is the most recent commit that needs this change.

References (8)

Core 8

Core References

https://git.kernel.org/stable/c/bcac50ea0a29d430eedc5ac87b215393b567baa9

https://git.kernel.org/stable/c/ea01c1b219f5a11c66918abaa6f052e5a74041d6

https://git.kernel.org/stable/c/aa6cd4a8863391e0a64f62d8922cb0af732a2cf2

https://git.kernel.org/stable/c/c2d4a3abb15ca14716c6d8b9ffcbcd7c63626af4

https://git.kernel.org/stable/c/673bbd36cba21d10a10f0932f479df7468e26fbb

https://git.kernel.org/stable/c/f419bdc205894750f4d3ec042bc87a1b9cde1351

https://git.kernel.org/stable/c/73124608172890306b85f2206d8b3cac20e324f1

https://git.kernel.org/stable/c/a958a4f90ddd7de0800b33ca9d7b886b7d40f74e

Scores

CVSS v3 7.1

EPSS 0.0001

EPSS Percentile 2.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

Status published

Products (20)

Linux/Linux < 4.5

Linux/Linux 4.5

Linux/Linux 5.10.253 - 5.10.*

Linux/Linux 5.15.203 - 5.15.*

Linux/Linux 6.1.168 - 6.1.*

Linux/Linux 6.12.81 - 6.12.*

Linux/Linux 6.18.22 - 6.18.*

Linux/Linux 6.19.12 - 6.19.*

Linux/Linux 6.6.134 - 6.6.*

Linux/Linux 7.0

... and 10 more

Published May 01, 2026

Tracked Since May 01, 2026