CVE-2026-5590

Name of the Vulnerable Software and Affected Versions Versions prior to a fix are affected.

Description A race condition during TCP connection teardown can cause tcp recv() to operate on a connection that has already been released. If tcp conn search() returns NULL while processing a SYN packet, a NULL pointer derived from stale context data is passed to tcp backlog is full() and dereferenced without validation, leading to a crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.