Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-23456
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-03 Apr, 2026 | 15:15
Updated At-11 May, 2026 | 22:07
Rejected At-
▼CVE Numbering Authority (CNA)
netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case In decode_int(), the CONS case calls get_bits(bs, 2) to read a length value, then calls get_uint(bs, len) without checking that len bytes remain in the buffer. The existing boundary check only validates the 2 bits for get_bits(), not the subsequent 1-4 bytes that get_uint() reads. This allows a malformed H.323/RAS packet to cause a 1-4 byte slab-out-of-bounds read. Add a boundary check for len bytes after get_bits() and before get_uint().

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • net/netfilter/nf_conntrack_h323_asn1.c
Default Status
unaffected
Versions
Affected
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before a2cd54b9348e485d338b3c132338a4410c99afaf (git)
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before c95dc674ebf01ecfb40388b6facfc89b81fed3b7 (git)
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before 41b417ff73a24b2c68134992cc44c88db27f482d (git)
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before 52235bf88159a1ef16434ab49e47e99c8a09ab20 (git)
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before 774a434f8c9c8602a976b2536f65d0172a07f4d2 (git)
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before 6bce72daeccca9aa1746e92d6c3d4784e71f2ebb (git)
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before fb6c3596823ec5dd09c2123340330d7448f51a59 (git)
  • From 5e35941d990123f155b02d5663e51a24f816b6f3 before 1e3a3593162c96e8a8de48b1e14f60c3b57fca8a (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • net/netfilter/nf_conntrack_h323_asn1.c
Default Status
affected
Versions
Affected
  • 2.6.17
Unaffected
  • From 0 before 2.6.17 (semver)
  • From 5.10.253 through 5.10.* (semver)
  • From 5.15.203 through 5.15.* (semver)
  • From 6.1.167 through 6.1.* (semver)
  • From 6.6.130 through 6.6.* (semver)
  • From 6.12.78 through 6.12.* (semver)
  • From 6.18.20 through 6.18.* (semver)
  • From 6.19.10 through 6.19.* (semver)
  • From 7.0 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
3.18.2HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Version: 3.1
Base score: 8.2
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/a2cd54b9348e485d338b3c132338a4410c99afaf
N/A
https://git.kernel.org/stable/c/c95dc674ebf01ecfb40388b6facfc89b81fed3b7
N/A
https://git.kernel.org/stable/c/41b417ff73a24b2c68134992cc44c88db27f482d
N/A
https://git.kernel.org/stable/c/52235bf88159a1ef16434ab49e47e99c8a09ab20
N/A
https://git.kernel.org/stable/c/774a434f8c9c8602a976b2536f65d0172a07f4d2
N/A
https://git.kernel.org/stable/c/6bce72daeccca9aa1746e92d6c3d4784e71f2ebb
N/A
https://git.kernel.org/stable/c/fb6c3596823ec5dd09c2123340330d7448f51a59
N/A
https://git.kernel.org/stable/c/1e3a3593162c96e8a8de48b1e14f60c3b57fca8a
N/A
Hyperlink: https://git.kernel.org/stable/c/a2cd54b9348e485d338b3c132338a4410c99afaf
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/c95dc674ebf01ecfb40388b6facfc89b81fed3b7
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/41b417ff73a24b2c68134992cc44c88db27f482d
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/52235bf88159a1ef16434ab49e47e99c8a09ab20
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/774a434f8c9c8602a976b2536f65d0172a07f4d2
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/6bce72daeccca9aa1746e92d6c3d4784e71f2ebb
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/fb6c3596823ec5dd09c2123340330d7448f51a59
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/1e3a3593162c96e8a8de48b1e14f60c3b57fca8a
Resource: N/A
Details not found