CVE-2026-43916: CWE-125: Out-of-bounds Read in identd-ng pam_authnft
CVE-2026-43916 is a high-severity vulnerability in the pam_authnft module of identd-ng versions prior to 0. 2. 0-alpha. It involves a heap buffer over-read caused by improper handling of crafted NETLINK_SOCK_DIAG replies in the peer_lookup_tcp function. This flaw allows reading beyond allocated memory boundaries, potentially leading to information disclosure or other impacts. The issue is fixed in version 0. 2. 0-alpha. No known exploits are reported in the wild at this time.
AI Analysis
Technical Summary
The vulnerability CVE-2026-43916 affects pam_authnft, a PAM session module in identd-ng that binds nftables firewall rules to authenticated sessions using cgroupv2 inodes. Before version 0.2.0-alpha, a heap buffer over-read occurs in the peer_lookup_tcp function due to a crafted NETLINK_SOCK_DIAG reply bypassing message-size checks and causing dereferencing beyond allocated memory. This is classified as CWE-125 (Out-of-bounds Read) and CWE-191 (Integer Underflow or Wraparound). The vulnerability has a CVSS 4.0 score of 8.7, indicating high severity. The issue is resolved in version 0.2.0-alpha.
Potential Impact
Successful exploitation of this vulnerability could allow an attacker to cause a heap buffer over-read, potentially leading to information disclosure or application instability. The CVSS score of 8.7 reflects a high impact with no required privileges, no user interaction, and network attack vector. No known exploits have been reported in the wild.
Mitigation Recommendations
The vulnerability is fixed in identd-ng version 0.2.0-alpha. Users should upgrade to version 0.2.0-alpha or later to remediate this issue. Patch status is not explicitly confirmed beyond the fix in 0.2.0-alpha; therefore, verify with the vendor advisory for the latest remediation guidance.
CVE-2026-43916: CWE-125: Out-of-bounds Read in identd-ng pam_authnft
Description
CVE-2026-43916 is a high-severity vulnerability in the pam_authnft module of identd-ng versions prior to 0. 2. 0-alpha. It involves a heap buffer over-read caused by improper handling of crafted NETLINK_SOCK_DIAG replies in the peer_lookup_tcp function. This flaw allows reading beyond allocated memory boundaries, potentially leading to information disclosure or other impacts. The issue is fixed in version 0. 2. 0-alpha. No known exploits are reported in the wild at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-43916 affects pam_authnft, a PAM session module in identd-ng that binds nftables firewall rules to authenticated sessions using cgroupv2 inodes. Before version 0.2.0-alpha, a heap buffer over-read occurs in the peer_lookup_tcp function due to a crafted NETLINK_SOCK_DIAG reply bypassing message-size checks and causing dereferencing beyond allocated memory. This is classified as CWE-125 (Out-of-bounds Read) and CWE-191 (Integer Underflow or Wraparound). The vulnerability has a CVSS 4.0 score of 8.7, indicating high severity. The issue is resolved in version 0.2.0-alpha.
Potential Impact
Successful exploitation of this vulnerability could allow an attacker to cause a heap buffer over-read, potentially leading to information disclosure or application instability. The CVSS score of 8.7 reflects a high impact with no required privileges, no user interaction, and network attack vector. No known exploits have been reported in the wild.
Mitigation Recommendations
The vulnerability is fixed in identd-ng version 0.2.0-alpha. Users should upgrade to version 0.2.0-alpha or later to remediate this issue. Patch status is not explicitly confirmed beyond the fix in 0.2.0-alpha; therefore, verify with the vendor advisory for the latest remediation guidance.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-04T16:11:33.086Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a0333e5cbff5d8610ef1d3a
Added to database: 5/12/2026, 2:06:29 PM
Last enriched: 5/12/2026, 2:21:29 PM
Last updated: 5/12/2026, 7:40:07 PM
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.