CVE-2026-23293

A flaw was found in the Linux kernel's Virtual Extensible LAN VXLAN module. When IPv6 is disabled, a remote attacker can trigger a system crash by injecting a specially crafted IPv6 packet into the network interface. This vulnerability, a null pointer dereference, can lead to a denial of service...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the vxlan module not handling the nexthop hash size correctly, which could lead to out-of-bounds access or...

PT-2025-38557

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.17.0-rc2-virtme-g2a89cb21162c through 6.17.0-rc2-virtmne-g6ee90cb26014 Description A null pointer dereference NPD issue was identified in the vxlan module when using nexthop objects with the "proxy" option enabled. This...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the vxlan module not locking when deleting default FDB entries, which could lead to data contention...

AZL-57962 CVE-2025-21790 affecting package kernel for versions less than 6.6.79.1-1

In the Linux kernel, the following vulnerability has been resolved: vxlan: check vxlanvnigroupinit return value vxlaninit must check vxlanvnigroupinit success otherwise a crash happens later, spotted by syzbot. Oops: general protection fault, probably for non-canonical address 0xdffffc000000002c:...

PT-2025-25812

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description The issue is related to data races in the vxlan module of the Linux kernel. Specifically, the used and updated fields in the FDB entry structure can be accessed concurrently by...