CVE-2026-31427 | Linux Kernel up to 6.1.167/6.6.130/6.12.79/6.18.20/6.19.10 nf_conntrack_sip process_sdp uninitialized pointer

Inserito da Angelo Barbosa | Apr 13, 2026 | CVE

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.167/6.6.130/6.12.79/6.18.20/6.19.10. This affects the function process_sdp of the component nf_conntrack_sip. The manipulation results in uninitialized pointer.

This vulnerability is identified as CVE-2026-31427. The attack can only be performed from the local network. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-31427 | Linux Kernel up to 6.1.167/6.6.130/6.12.79/6.18.20/6.19.10 nf_conntrack_sip process_sdp uninitialized pointer

Post correlati

CVE-2026-5425 | trustindex Widgets for Social Photo Feed Plugin up to 1.7.9 on WordPress feed_data cross site scripting

CVE-2024-43191 | IBM Cloud Pak for Multicloud Management 2.3/2.3 FP8 YAML File deserialization

CVE-2024-23058 | Totolink A3300R 17.0.0cu.557_B20221024 setTr069Cfg pass command injection

CVE-2025-6511 | Netgear EX6150 1.0.0.46_1.0.76 sub_410090 stack-based overflow