{"id":"CVE-2026-23451","summary":"bonding: prevent potential infinite loop in bond_header_parse()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: prevent potential infinite loop in bond_header_parse()\n\nbond_header_parse() can loop if a stack of two bonding devices is setup,\nbecause skb-\u003edev always points to the hierarchy top.\n\nAdd new \"const struct net_device *dev\" parameter to\n(struct header_ops)-\u003eparse() method to make sure the recursion\nis bounded, and that the final leaf parse method is called.","modified":"2026-07-09T18:30:12.852855382Z","published":"2026-04-03T15:15:33.776Z","related":["SUSE-SU-2026:22521-1","SUSE-SU-2026:22522-1","SUSE-SU-2026:2799-1","SUSE-SU-2026:2800-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23451.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/4172a7901cf43fe1cc63ef7a2ef33735ff7b7d13"},{"type":"WEB","url":"https://git.kernel.org/stable/c/946bb6cacf0ccada7bc80f1cfa07c1ed79511c1c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9b49c854f14f5e2d493e562a1e28d2e57fe37371"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b7405dcf7385445e10821777143f18c3ce20fa04"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23451.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23451"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"9baf26a91565b7bb2b1d9f99aaf884a2b28c2f6d"},{"fixed":"946bb6cacf0ccada7bc80f1cfa07c1ed79511c1c"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"6ac890f1d60ac3707ee8dae15a67d9a833e49956"},{"fixed":"4172a7901cf43fe1cc63ef7a2ef33735ff7b7d13"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"95597d11dc8bddb2b9a051c9232000bfbb5e43ba"},{"fixed":"9b49c854f14f5e2d493e562a1e28d2e57fe37371"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"950803f7254721c1c15858fbbfae3deaaeeecb11"},{"fixed":"b7405dcf7385445e10821777143f18c3ce20fa04"}]}],"versions":["v6.18.19","v6.19.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23451.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"6.18.19"},{"fixed":"6.18.20"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.9"},{"fixed":"6.19.10"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23451.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}