CVE-2026-31416 PUBLISHED

netfilter: nfnetlink_log: account for netlink header size

Assigner: Linux
Reserved: 09.03.2026 Published: 13.04.2026 Updated: 13.04.2026

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nfnetlink_log: account for netlink header size

This is a followup to an old bug fix: NLMSG_DONE needs to account for the netlink header size, not just the attribute size.

This can result in a WARN splat + drop of the netlink message, but other than this there are no ill effects.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 9dfa1dfe4d5e5e66a991321ab08afe69759d797a to 761b45c661af48da6a065868d59ab1e1f64fd9b6 (excl.)
  • affected from 9dfa1dfe4d5e5e66a991321ab08afe69759d797a to 607245c4dbb86d9a10dd8388da0fb82170a99b61 (excl.)
  • affected from 9dfa1dfe4d5e5e66a991321ab08afe69759d797a to 6b419700e459fbf707ca1543b7c1b57a60fedb73 (excl.)
  • affected from 9dfa1dfe4d5e5e66a991321ab08afe69759d797a to 88a8f56e6276f616baad4274c6b8e4683e26e520 (excl.)
  • affected from 9dfa1dfe4d5e5e66a991321ab08afe69759d797a to f08ffa3e1c8e36b6131f69c5eb23700c28cbd262 (excl.)
  • affected from 9dfa1dfe4d5e5e66a991321ab08afe69759d797a to 6d52a4a0520a6696bdde51caa11f2d6821cd0c01 (excl.)
  • Version 3a758a2b78da2f49f7165678faf999e946a0c4b5 is affected
  • Version 131172845aa2c804ffa9423455aee585061ea35e is affected
  • Version b1fef6b81871a396f3b8702077333e769673c87b is affected
  • Version add9183d993c12fb61ce0a674a424341d5be5b36 is affected
Vendor Linux
Product Linux
Versions Default: affected
  • Version 3.18 is affected
  • unaffected from 0 to 3.18 (excl.)
  • unaffected from 6.1.168 to 6.1.* (incl.)
  • unaffected from 6.6.134 to 6.6.* (incl.)
  • unaffected from 6.12.81 to 6.12.* (incl.)
  • unaffected from 6.18.22 to 6.18.* (incl.)
  • unaffected from 6.19.12 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References