Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: ipvs: fixed the uninit-value for saddr in dooutputRoute4. The syzbot reports an issue with the uninit-value of the saddr argument 1. The commit 4754957f04f “ipvs: do not use a random local source address for tunnels” already...

CVE-2026-43139

A flaw was found in the Linux kernel's xfrm6 subsystem. This vulnerability occurs because the xfrm6getsaddr function does not properly check the return value of ipv6devgetsaddr. This oversight can result in an uninitialized source address being used, potentially leading to system instability or a...

CVE-2026-43139 xfrm6: fix uninitialized saddr in xfrm6_get_saddr()

In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6getsaddr xfrm6getsaddr does not check the return value of ipv6devgetsaddr. When ipv6devgetsaddr fails to find a suitable source address returns -EADDRNOTAVAIL, saddr-in6 is left uninitialize...

CVE-2026-43139

In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6getsaddr xfrm6getsaddr does not check the return value of ipv6devgetsaddr. When ipv6devgetsaddr fails to find a suitable source address returns -EADDRNOTAVAIL, saddr-in6 is left uninitialize...