CVE-2026-31414

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> netfilter: nf_conntrack_expect: use expect-&gt;helper<br /> <br /> Use expect-&gt;helper in ctnetlink and /proc to dump the helper name.<br /> Using nfct_help() without holding a reference to the master conntrack<br /> is unsafe.<br /> <br /> Use exp-&gt;master-&gt;helper in ctnetlink path if userspace does not provide<br /> an explicit helper when creating an expectation to retain the existing<br /> behaviour. The ctnetlink expectation path holds the reference on the<br /> master conntrack and nf_conntrack_expect lock and the nfnetlink glue<br /> path refers to the master ct that is attached to the skb.