🔴 严重 | CVE-2026-53221 — In the Linux kernel, the following vulnerability has be
🔴 《严重安全漏洞:CVE-2026-53221》
CVSS 评分: 严重(9.8) CVE ID: CVE-2026-53221
漏洞描述
In the Linux kernel, the following vulnerability has been resolved:
ip6_vti: fix incorrect tunnel matching in vti6_tnl_lookup()
In vti6_tnl_lookup(), when an exact match for a tunnel fails,
the code falls back to searching for wildcard tunnels:
Tunnels matching the packet's local address, with any remote address
wildcard remote).Tunnels matching the packet's remote address, with any local address
(wildcard local).
However, vti6 stores all these different types of tunnels in the same
hash table (ip6n->tnls_r_l) prone to hash collisions.
The bug is that the fallback search loops in vti6_tnl_lookup() were
missing checks to ensure that the candidate tunnel actually has
a wildcard address.
| 字段 | 值 |
|---|---|
| CVE ID | CVE-2026-53221 |
| CVSS 评分 | 9.8 |
| 严重程度 | 严重 |
| 发布时间 | 2026-06-25 |
| 状态 | Received |
数据来源: NVD | 获取时间: 2026-06-28 18:14