PT-2026-4666 · Linux · Linux Kernel

Syzbot

·

Published

2026-01-01

·

Updated

2026-05-26

·

CVE-2026-23004

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contained a race condition in the rt6 uncached list del() and rt del uncached list() functions. The syzbot tool was able to crash the kernel in rt6 uncached list flush dev() due to a write occurring while the list had been freed. The issue stemmed from rt6 uncached list del() not locking ul->lock when list empty(&rt->dst.rt uncached) returned true because the write to list->next occurred on another CPU. The crash occurred during initialization of a list head (INIT LIST HEAD) and list deletion (list del init). The issue was observed in the context of IPv6 routing and multicast operations, specifically during network interface shutdown and multicast packet sending. The kernel stack trace indicates the issue was triggered within the networking subsystem, potentially impacting network device management and multicast functionality.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

LPE

Race Condition

Weakness Enumeration

CWE-362

Related Identifiers

AZL-77304
BDU:2026-01057
CVE-2026-23004
ECHO-04CB-515F-5685
OPENSUSE-SU-2026:20416-1
SUSE-SU-2026:0928-1
SUSE-SU-2026:0961-1
SUSE-SU-2026:0962-1
SUSE-SU-2026:0984-1
SUSE-SU-2026:1003-1
SUSE-SU-2026:1041-1
SUSE-SU-2026:1077-1
SUSE-SU-2026:1078-1
SUSE-SU-2026:1081-1
SUSE-SU-2026:1131-1
SUSE-SU-2026:1684-1
SUSE-SU-2026:1686-1
SUSE-SU-2026:1689-1
SUSE-SU-2026:1691-1
SUSE-SU-2026:1694-1
SUSE-SU-2026:1698-1
SUSE-SU-2026:1708-1
SUSE-SU-2026:1710-1
SUSE-SU-2026:1718-1
SUSE-SU-2026:1725-1
SUSE-SU-2026:1726-1
SUSE-SU-2026:1728-1
SUSE-SU-2026:1733-1
SUSE-SU-2026:1735-1
SUSE-SU-2026:1765-1
SUSE-SU-2026:1767-1
SUSE-SU-2026:1768-1
SUSE-SU-2026:1770-1
SUSE-SU-2026:1771-1
SUSE-SU-2026:1773-1
SUSE-SU-2026:1776-1
SUSE-SU-2026:1780-1
SUSE-SU-2026:1781-1
SUSE-SU-2026:1786-1
SUSE-SU-2026:1787-1
SUSE-SU-2026:1790-1
SUSE-SU-2026:1791-1
SUSE-SU-2026:1793-1
SUSE-SU-2026:1798-1
SUSE-SU-2026:1801-1
SUSE-SU-2026:1804-1
SUSE-SU-2026:20667-1
SUSE-SU-2026:20720-1
SUSE-SU-2026:20838-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
SUSE-SU-2026:20931-1
SUSE-SU-2026:21284-1
SUSE-SU-2026:21468-1
SUSE-SU-2026:21469-1
SUSE-SU-2026:21470-1
SUSE-SU-2026:21471-1
SUSE-SU-2026:21472-1
SUSE-SU-2026:21473-1
SUSE-SU-2026:21474-1
SUSE-SU-2026:21475-1
SUSE-SU-2026:21476-1
SUSE-SU-2026:21477-1
SUSE-SU-2026:21479-1
SUSE-SU-2026:21480-1
SUSE-SU-2026:21481-1
SUSE-SU-2026:21482-1
SUSE-SU-2026:21483-1
SUSE-SU-2026:21484-1
SUSE-SU-2026:21485-1
SUSE-SU-2026:21486-1
SUSE-SU-2026:21487-1
SUSE-SU-2026:21491-1
SUSE-SU-2026:21495-1
SUSE-SU-2026:21496-1
SUSE-SU-2026:21497-1
SUSE-SU-2026:21498-1
SUSE-SU-2026:21499-1
SUSE-SU-2026:21500-1
SUSE-SU-2026:21501-1
SUSE-SU-2026:21503-1
SUSE-SU-2026:21504-1
SUSE-SU-2026:21505-1
SUSE-SU-2026:21506-1
SUSE-SU-2026:21507-1
SUSE-SU-2026:21508-1
SUSE-SU-2026:21509-1
SUSE-SU-2026:21510-1
SUSE-SU-2026:21511-1
SUSE-SU-2026:21512-1
SUSE-SU-2026:21513-1
SUSE-SU-2026:21514-1
SUSE-SU-2026:21515-1
SUSE-SU-2026:21519-1
SUSE-SU-2026:21522-1
SUSE-SU-2026:21523-1
SUSE-SU-2026:21525-1
SUSE-SU-2026:21526-1
SUSE-SU-2026:21527-1
SUSE-SU-2026:21528-1
SUSE-SU-2026:21529-1
SUSE-SU-2026:21531-1
SUSE-SU-2026:21532-1
SUSE-SU-2026:21533-1
SUSE-SU-2026:21554-1
SUSE-SU-2026:21555-1
SUSE-SU-2026:21557-1
SUSE-SU-2026:21562-1
SUSE-SU-2026:21563-1
SUSE-SU-2026:21591-1
SUSE-SU-2026:21598-1

Affected Products

Linux Kernel