Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case In decode_int(), the CONS case calls get_bits(bs, 2) to read a length value, then calls get_uint(bs, len) without checking that len bytes remain in the buffer. The existing boundary check only validates the 2 bits for get_bits(), not the subsequent 1-4 bytes that get_uint() reads. This allows a malformed H.323/RAS packet to cause a 1-4 byte slab-out-of-bounds read. Add a boundary check for len bytes after get_bits() and before get_uint().

INFO

Published Date :

2026-04-03T15:15:37.534Z

Last Modified :

2026-04-03T15:15:37.534Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23456 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23456.

URL Resource
https://git.kernel.org/stable/c/1e3a3593162c96e8a8de48b1e14f60c3b57fca8a cve-icon cve-icon
https://git.kernel.org/stable/c/41b417ff73a24b2c68134992cc44c88db27f482d cve-icon cve-icon
https://git.kernel.org/stable/c/52235bf88159a1ef16434ab49e47e99c8a09ab20 cve-icon cve-icon
https://git.kernel.org/stable/c/6bce72daeccca9aa1746e92d6c3d4784e71f2ebb cve-icon cve-icon
https://git.kernel.org/stable/c/774a434f8c9c8602a976b2536f65d0172a07f4d2 cve-icon cve-icon
https://git.kernel.org/stable/c/fb6c3596823ec5dd09c2123340330d7448f51a59 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026040318-CVE-2026-23456-7da2@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23456 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23456 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact