CVE-2026-31405

A flaw was found in the Linux kernel's dvb-net component. A remote attacker could exploit this vulnerability by sending specially crafted network data. This could lead to an out-of-bounds read in the `handle_one_ule_extension()` function, potentially allowing the attacker to execute arbitrary code. The issue arises because an index derived from network-controlled data can exceed the bounds of an internal function pointer table.