UBUNTU-CVE-2026-48688

Source
https://ubuntu.com/security/CVE-2026-48688
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-48688.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-48688
Upstream
Published
2026-05-26T16:16:00Z
Modified
2026-06-15T20:15:13.888497367Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

FastNetMon Community Edition through 1.2.9 contains multiple out-of-bounds reads in the BGP MPREACHNLRI IPv6 attribute decoder. The function decodempreachipv6() in src/bgpprotocol.cpp contains a TODO comment at line 156 explicitly acknowledging 'we should add sanity checks to avoid reads after attribute memory block.' The function casts raw pointers to structure types without verifying sufficient data exists (line 158), uses the attacker-controlled lengthofnexthop field to determine memcpy size (line 181), and computes prefixlength by dereferencing a pointer calculated from multiple attacker-controlled offsets without bounds validation (line 189). The prefixlength is then used to calculate numberofbytesrequiredforprefix which becomes a memcpy length (line 202) with no check against remaining buffer size.

References

Affected packages

Ubuntu:18.04:LTS / fastnetmon

Package

Name
fastnetmon
Purl
pkg:deb/ubuntu/fastnetmon?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.1.3+dfsg-3
1.1.3+dfsg-4
1.1.3+dfsg-6build1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "fastnetmon",
            "binary_version": "1.1.3+dfsg-6build1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-48688.json"

Ubuntu:Pro:20.04:LTS / fastnetmon

Package

Name
fastnetmon
Purl
pkg:deb/ubuntu/fastnetmon?arch=source&distro=esm-apps%2Ffocal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.1.4-1
1.1.4-1build3
1.1.4-1build4
1.1.4-1build5
1.1.4-1ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "fastnetmon",
            "binary_version": "1.1.4-1ubuntu0.1~esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-48688.json"

Ubuntu:Pro:24.04:LTS / fastnetmon

Package

Name
fastnetmon
Purl
pkg:deb/ubuntu/fastnetmon?arch=source&distro=esm-apps%2Fnoble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.2.5-1
1.2.6-1
1.2.6-1build1
1.2.6-1build2
1.2.6-1build3
1.2.6-1build4
1.2.6-1ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "fastnetmon",
            "binary_version": "1.2.6-1ubuntu0.1~esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-48688.json"

Ubuntu:25.10 / fastnetmon

Package

Name
fastnetmon
Purl
pkg:deb/ubuntu/fastnetmon?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.2.8-1build1
1.2.8-1build2
1.2.8+git20250911-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "fastnetmon",
            "binary_version": "1.2.8+git20250911-1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-48688.json"

Ubuntu:Pro:26.04:LTS / fastnetmon

Package

Name
fastnetmon
Purl
pkg:deb/ubuntu/fastnetmon?arch=source&distro=esm-apps%2Fresolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.2.8+git20250911-1
1.2.8+git20250911-1build1
1.2.8+git20250911-1build2
1.2.8+git20250911-2
1.2.8+git20250911-2ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "fastnetmon",
            "binary_version": "1.2.8+git20250911-2ubuntu0.1~esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-48688.json"