PT-2026-4663 · Linux+3 · Linux Kernel+3

Published

2026-01-01

·

Updated

2026-06-04

·

CVE-2026-23001

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A use-after-free condition exists in the macvlan forward source() function within the macvlan module. The issue stems from a lack of proper RCU (Read-Copy-Update) protection on the vlan pointer within the macvlan source entry structure. Specifically, the vlan pointer is not cleared before the RCU grace period begins in macvlan hash del source(). This allows macvlan forward source() to potentially access memory that has been freed, leading to a use-after-free condition. The macvlan devices are already protected by RCU as they are embedded within a standard netdev.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2026:3963
ALSA-2026:3964
ALSA-2026:3966
ALSA-2026:4012
BDU:2026-01111
CVE-2026-23001
ECHO-0E90-C4E3-9192
OPENSUSE-SU-2026:20287-1
RHSA-2026:10996
RHSA-2026:3963
RHSA-2026:3964
RHSA-2026:3966
RHSA-2026:4012
RHSA-2026:5197
RHSA-2026:6310
RHSA-2026:6948
RHSA-2026:6954
RHSA-2026:6986
RHSA-2026:9835
RHSA-2026:9836
SUSE-SU-2026:0447-1
SUSE-SU-2026:0471-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0473-1
SUSE-SU-2026:0474-1
SUSE-SU-2026:0475-1
SUSE-SU-2026:0495-1
SUSE-SU-2026:0496-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:0617-1
SUSE-SU-2026:1131-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20555-1
SUSE-SU-2026:20599-1
SUSE-SU-2026:20615-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8162-1
USN-8180-1
USN-8180-2
USN-8180-3
USN-8180-4
USN-8180-5
USN-8180-6
USN-8186-1
USN-8187-1
USN-8188-1
USN-8243-1
USN-8275-1
USN-8278-1
USN-8278-2
USN-8289-1
USN-8289-2
USN-8296-1
USN-8296-2
USN-8297-1
USN-8393-1

Affected Products

Linuxmint
Linux Kernel
Rocky Linux
Ubuntu