网安资讯详情 - SecLens 情报雷达

网安资讯,一网打尽。汇集权威漏洞通告与行业要闻,结合分组浏览、智能过滤、RSS订阅 和 Webhook 推送,多通道拓展您的安全情报视野。

CVE-2026-23456

来源: alibaba_cloud_linux_cve · 发布时间 2026-05-29 15:15 (UTC+08:00) · 抓取时间 2026-05-29 16:10 (UTC+08:00)

原文链接

摘要

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case In decode_int(), the CONS case calls get_bits(bs, 2) to read a length value, then calls get_uint(bs, len) without checking that len bytes remain in the buffer. The existing boundary check only validates the 2 bits for get_bits(), not the subsequent 1-4 bytes that get_uint() reads. This allows a malformed H.323/RAS packet to cause a 1-4 byte slab-out-of-bounds read. Add a boundary check for len bytes after get_bits() and before get_uint().

标签

扩展字段

{
  "cve_id": "CVE-2026-23456",
  "raw_pub_date": "Fri, 29 May 2026 15:15:12 +0800"
}