CVE-2026-23442

Published: Apr 03, 2026 Last Modified: Apr 03, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

In the Linux kernel, the following vulnerability has been resolved:

ipv6: add NULL checks for idev in SRv6 paths

__in6_dev_get() can return NULL when the device has no IPv6 configuration
(e.g. MTU < IPV6_MIN_MTU or after NETDEV_UNREGISTER).

Add NULL checks for idev returned by __in6_dev_get() in both
seg6_hmac_validate_skb() and ipv6_srh_rcv() to prevent potential NULL
pointer dereferences.

https://git.kernel.org/stable/c/06413793526251870e20402c399…

https://git.kernel.org/stable/c/06413793526251870e20402c39930804f14d59c0

https://git.kernel.org/stable/c/a25853c9feea7bbf31d157ff6e0…

https://git.kernel.org/stable/c/a25853c9feea7bbf31d157ff6e004d2d3b4f7f13

CVE-2026-23442

Description

Iscriviti alla newsletter