2 matches found
CVE-2026-43190 netfilter: xt_tcpmss: check remaining length before reading optlen
In the Linux kernel, the following vulnerability has been resolved: netfilter: xttcpmss: check remaining length before reading optlen Quoting reporter: In net/netfilter/xttcpmss.c lines 53-68, the TCP option parser reads opi+1 directly without validating the remaining option length. If the last...
FNET Buffer Error Vulnerability
FNET is a soft armor from the FNET organization that provides dual TCP / IPv4 and IPv6 stack support for 32-bit MCUs. FNET suffers from a buffer error vulnerability that stems from a function that handles IPv6 hop-by-hop extension headers not checking the validity of their option lengths, allowin...