CVE-2026-23459HIGH 8.2EPSS p21.4%

CVE-2026-23459CVE-2026-23459

Description

In the Linux kernel, the following vulnerability has been resolved: ip_tunnel: adapt iptunnel_xmit_stats() to NETDEV_PCPU_STAT_DSTATS Blamed commits forgot that vxlan/geneve use udp_tunnel[6]_xmit_skb() which call iptunnel_xmit_stats(). iptunnel_xmit_stats() was assuming tunnels were only using NETDEV_PCPU_STAT_TSTATS. @syncp offset in pcpu_sw_netstats and pcpu_dstats is different. 32bit kernels would either have corruptions or freezes if the syncp sequence was overwritten. This patch also moves pcpu_stat_type closer to dev->{t,d}stats to avoid a potential cache line miss since iptunnel_xmit_stats() needs to read it.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
EPSS0.30% probability of exploitation · percentile 21.4% · 2026-06-18T12:00:27Z
Published2026-04-03
Last modified2026-05-26

References

  1. https://git.kernel.org/stable/c/0d087d00161f562d5047cc4009bb0c6a19daf9f1
  2. https://git.kernel.org/stable/c/8431c602f551549f082bbfa67f3003f2d8e3e132

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-23442
CVE
CVE-2026-23112
CVE
CVE-2026-31668
CVE
CVE-2026-46322
CVE
CVE-2026-23456
CVE
CVE-2026-23457
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.