CVE-2026-23143

CWE-1937 documents7 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 96.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux LinuxLinux Linux Kernel
Timeline
PublishedFeb 14

Description

In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix misalignment bug in struct virtnet_info Use the new TRAILING_OVERLAP() helper to fix a misalignment bug along with the following warning: drivers/net/virtio_net.c:429:46: warning: structure containing a flexible array member is not at the end of another structure [-Wflex-array-member-not-at-end] This helper creates a union between a flexible-array member (FAM) and a set of members that would otherwise follow

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDlinux/linux_kernel6.156.18.7+1
CVEListV5linux/linuxed3100e90d0d120a045a551b85eb43cf2527e885ae48108c2310f1dd700e0dbb655c2f1d92ed00fc+2
Debianlinux< 6.18.8-1

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
GHSA
GHSA-372h-fwqg-rp6x: In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix misalignment bug in struct virtnet_info Use the new TRAILING_OVE2026-02-14
CVEList
virtio_net: Fix misalignment bug in struct virtnet_info2026-02-14
OSV
CVE-2026-23143: In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix misalignment bug in struct virtnet_info Use the new TRAILING_OVERL2026-02-14

📋Vendor Advisories

2
Red Hat
kernel: virtio_net: Fix misalignment bug in struct virtnet_info2026-02-14
Debian
CVE-2026-23143: linux - In the Linux kernel, the following vulnerability has been resolved: virtio_net:...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23143 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23143 (MEDIUM CVSS 5.5) | In the Linux kernel | cvebase.io