CVE-2026-31692

UNKNOWN 0.0

rtnetlink: add missing netlink_ns_capable() check for peer netns

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: add missing netlink_ns_capable() check for peer netns rtnl_newlink() lacks a CAP_NET_ADMIN capability check on the peer network namespace when creating paired devices (veth, vxcan, netkit). This allows an unprivileged user with a user namespace to create interfaces in arbitrary network namespaces, including init_net. Add a netlink_ns_capable() check for CAP_NET_ADMIN in the peer namespace before allowing device creation to proceed.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Apr 30, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

81adee47dfb608df3ad0b91d230fb3cef75f0060 < 0975b64ffb34560042090a5986c3a02e6c80f36f 81adee47dfb608df3ad0b91d230fb3cef75f0060 < d04cc16d3624218a5458b2b664ae431f1b3b334d 81adee47dfb608df3ad0b91d230fb3cef75f0060 < 7b735ef81286007794a227ce2539419479c02a5f

Linux / Linux

2.6.33

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/0975b64ffb34560042090a5986c3a02e6c80f36f git.kernel.org: https://git.kernel.org/stable/c/d04cc16d3624218a5458b2b664ae431f1b3b334d git.kernel.org: https://git.kernel.org/stable/c/7b735ef81286007794a227ce2539419479c02a5f