CVE-2026-31405
Description
In the Linux kernel, the following vulnerability has been resolved:
media: dvb-net: fix OOB access in ULE extension header tables
The ule_mandatory_ext_handlers[] and ule_optional_ext_handlers[] tables in handle_one_ule_extension() are declared with 255 elements (valid indices 0-254), but the index htype is derived from network-controlled data as (ule_sndu_type & 0x00FF), giving a range of 0-255. When htype equals 255, an out-of-bounds read occurs on the function pointer table, and the OOB value may be called as a function pointer.
Add a bounds check on htype against the array size before either table is accessed. Out-of-range values now cause the SNDU to be discarded.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
76(expand)+ 9 more
- (no CPE)
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=2.6.12.1,<5.10.253
- cpe:2.3:o:linux:linux_kernel:2.6.12:-:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
- (no CPE)
- osv-coords66 versionspkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP6pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/kernel-livepatch-SLE15-SP4_Update_55&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4pkg:rpm/suse/kernel-livepatch-SLE15-SP6_Update_27&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP6pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_84&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
< 5.14.21-150400.24.222.1+ 65 more
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1.150400.24.112.1
- (no CPE)range: < 5.14.21-150400.24.222.1.150400.24.112.1
- (no CPE)range: < 5.14.21-150400.24.222.1.150400.24.112.1
- (no CPE)range: < 5.14.21-150400.24.222.1.150400.24.112.1
- (no CPE)range: < 5.14.21-150400.24.222.1.150400.24.112.1
- (no CPE)range: < 6.4.0-150600.23.115.1.150600.12.54.1
- (no CPE)range: < 5.14.21-150400.24.222.1.150400.24.112.1
- (no CPE)range: < 6.4.0-150600.23.115.1.150600.12.54.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 1-150400.9.3.1
- (no CPE)range: < 1-150600.13.3.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.15.170.1
- (no CPE)range: < 5.14.21-150400.15.170.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 5.14.21-150400.15.170.1
- (no CPE)range: < 5.14.21-150400.15.170.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 5.14.21-150400.24.222.1
- (no CPE)range: < 6.4.0-150600.23.115.1
- (no CPE)range: < 1-8.7.1
Patches
Vulnerability mechanics
References
8- git.kernel.org/stable/c/145e50c2c700fa52b840df7bab206043997dd18envdPatch
- git.kernel.org/stable/c/1a6da3dbb9985d00743073a1cc1f96e59f5abc30nvdPatch
- git.kernel.org/stable/c/24d87712727a5017ad142d63940589a36cd25647nvdPatch
- git.kernel.org/stable/c/29ef43ceb121d67b87f4cbb08439e4e9e732eff8nvdPatch
- git.kernel.org/stable/c/8bde543d2a5f935ba2a6a6325a2e02f8a9256fbenvdPatch
- git.kernel.org/stable/c/b2bd2ee73b697c177157bba534e1b1064c2e66a0nvdPatch
- git.kernel.org/stable/c/e51238718217c4abdb3ccc3b0c0cde265c7ec629nvdPatch
- git.kernel.org/stable/c/f2b65dcb78c8990e4c68a906627433be1fe38a92nvdPatch
News mentions
0No linked articles in our index yet.