PT-2026-26578 · Linux+2 · Linux Kernel+2

Valis

·

Publicado

2026-01-01

·

Atualizado

2026-06-16

·

CVE-2026-23273

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc8+ #33
Description The Linux kernel contains a flaw within the macvlan module. Specifically, a race condition exists in the macvlan common newlink() function's error path, potentially leading to a slab-use-after-free issue. This occurs when macvlan common newlink() makes a network device (@dev) visible before an error is detected, allowing its caller to directly free the device using free netdev(dev). The issue requires respecting an RCU (Read-Copy-Update) period within both macvlan and the core networking stack. Exploitation involves creating a veth pair, configuring addresses, bringing up interfaces, and adding a macvlan interface, which can trigger the vulnerability. The issue was identified through KASAN (Kernel Address Sanitizer) reports during testing.
Recommendations Update to a newer version of the Linux kernel that contains a fix for this vulnerability.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Identificadores relacionados

CVE-2026-23273
ECHO-AAB6-B6BE-9C97
OESA-2026-2416
OESA-2026-2417
OESA-2026-2418
OESA-2026-2579
OPENSUSE-SU-2026:20826-1
SUSE-SU-2026:2068-1
SUSE-SU-2026:2111-1
SUSE-SU-2026:21841-1
SUSE-SU-2026:21845-1
SUSE-SU-2026:21860-1
SUSE-SU-2026:21876-1
SUSE-SU-2026:21877-1
SUSE-SU-2026:21916-1
SUSE-SU-2026:21919-1
SUSE-SU-2026:2195-1
SUSE-SU-2026:2202-1
SUSE-SU-2026:2215-1
SUSE-SU-2026:2216-1
SUSE-SU-2026:2217-1
SUSE-SU-2026:2238-1
USN-8244-1
USN-8254-1
USN-8254-2
USN-8254-3
USN-8255-1
USN-8255-2
USN-8255-3
USN-8257-1
USN-8260-1
USN-8261-1
USN-8275-1
USN-8439-1

Produtos afetados

Linuxmint
Linux Kernel
Ubuntu