Bug 2492751 (CVE-2026-53221)
| Summary: | CVE-2026-53221 kernel: ip6_vti: fix incorrect tunnel matching in vti6_tnl_lookup() | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
| Status: | NEW --- | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | rhel-process-autobot, watson-tool-maintainers |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in the Linux kernel, specifically within the `ip6_vti` component responsible for managing IPv6 tunnels. This vulnerability arises from an error in the `vti6_tnl_lookup()` function, which incorrectly matches network tunnels by failing to properly verify wildcard addresses during fallback searches. This can lead to network traffic being misdirected or dropped, potentially disrupting network services. The underlying cause is a lack of checks to confirm that a candidate tunnel indeed has a wildcard address.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
OSIDB Bzimport
2026-06-25 10:03:50 UTC
|