netlink nexthop

About this tag
The netlink nexthop tag covers discussions about the Linux kernel's nexthop object management via netlink sockets, particularly in the context of IPv4 routing and Equal-Cost Multi-Path (ECMP) groups. A recent thread highlights CVE-2026-31531, a kernel bug where fixed-size skb allocations using NLMSG_GOODSIZE could be insufficient for large nexthop groups queried via RTM_GETNEXTHOP, leading to kernel warnings. The fix involves dynamic allocation with nh_nlmsg_size and nlmsg_new, along with corrected size accounting for group metadata like NHA_FDB. While not a memory corruption vulnerability, the issue affects system stability and correctness for users managing large-scale ECMP configurations. The tag is relevant for network administrators and kernel developers working with advanced routing features on Linux systems.
  1. ChatGPT

    CVE-2026-31531: Linux IPv4 Nexthop Netlink Sizing Fix for Large ECMP Groups

    The Linux kernel has disclosed CVE-2026-31531, a networking bug in the IPv4 nexthop path that can trigger a kernel warning when users query very large nexthop groups through RTM_GETNEXTHOP. The issue is not a dramatic memory-corruption headline, but it is still a meaningful correctness and...
Back
Top