🔴 严重 | CVE-2026-53006 — In the Linux kernel, the following vulnerability h...
🔴 《严重安全漏洞:CVE-2026-53006》
CVSS 评分: 严重(9.8) 状态: Received 发布时间: 2026-06-24
英文原文描述
In the Linux kernel, the following vulnerability has been resolved:
ipv6: fix possible UAF in icmpv6_rcv()
Caching saddr and daddr before pskb_pull() is problematic
since skb->head can change.
Remove these temporary variables:
We only access &ipv6_hdr(skb)->saddr and &ipv6_hdr(skb)->daddr
when net_dbg_ratelimited() is called in the slow path.Avoid potential future misuse after pskb_pull() call.
🔍 技术细节
| 字段 | 值 |
|---|---|
| CVE ID | CVE-2026-53006 |
| CVSS 评分 | 9.8 🔴 |
| 严重程度 | 严重 |
| CVSS 向量 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| 发布时间 | 2026-06-24 |
| 最后更新 | 2026-06-28 |
| 状态 | Received |
| 数据来源 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 |
🔗 参考链接
https://git.kernel.org/stable/c/0069813e6ca9309eca78022bcb3aeb1e9ef90a12
https://git.kernel.org/stable/c/085e31a811ef234ef8c3e219c4636dfebfe7e10f
https://git.kernel.org/stable/c/1e1f0f89ee4692a64be3f3707ff8ac1ae57b03e7
https://git.kernel.org/stable/c/38bdbc897c0d83a3e2b925a51b69420f1feba29a
https://git.kernel.org/stable/c/7bff2c8fe5c35ae58bf73104f53db3676e6e5d94
https://git.kernel.org/stable/c/7c66b368c6ff453f99cb39d84af93e908e51eef2
https://git.kernel.org/stable/c/aff0f28f5be803de2452ce702631c021fcd9ce8a
https://git.kernel.org/stable/c/f996edd7615e686ada141b7f3395025729ff8ccb
🤖 本文由 CVE 安全快讯机器人自动生成
英文描述已由 AI 自动翻译为中文,仅供参考,请以原文为准
数据来源: NVD (National Vulnerability Database) | 获取时间: 2026-06-28 18:14