Skip to main content

Linux Kernel EUVDEUVD-2026-32316

| CVE-2026-45850 MEDIUM
2026-05-27 416baaa9-dc9f-4396-8d5f-8c081fb06d67 GHSA-3j9q-258h-4v38
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
vuln.today AI
5.5 MEDIUM

Triggering impact requires local access and IPVS configured with an IPv6 virtual service; no confidentiality or integrity impact is described or implied.

3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
4.0 AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

5
Analysis Generated
Jun 25, 2026 - 21:12 vuln.today
CVSS changed
Jun 25, 2026 - 21:07 NVD
5.5 (MEDIUM)
Patch available
May 27, 2026 - 19:46 EUVD
CVE Published
May 27, 2026 - 14:16 nvd
MEDIUM 5.5
CVE Published
May 27, 2026 - 14:16 nvd
UNKNOWN (no severity yet)

DescriptionNVD

In the Linux kernel, the following vulnerability has been resolved:

ipvs: skip ipv6 extension headers for csum checks

Protocol checksum validation fails for IPv6 if there are extension headers before the protocol header. iph->len already contains its offset, so use it to fix the problem.

AnalysisAI

Incorrect offset handling in the Linux kernel IPVS subsystem causes IPv6 protocol checksum validation to fail when extension headers precede the transport header, disrupting availability on systems acting as IPv6 load balancers. Affected across a broad kernel version range from 2.6.28 onward, with fixes confirmed in stable releases 6.19.4 and mainline 7.0. No public exploit code exists and no active exploitation has been identified; EPSS is 0.02% (5th percentile), indicating negligible real-world exploitation pressure.

Technical ContextAI

IPVS (IP Virtual Server) is the kernel-space transport-layer load balancer found in the Linux kernel, commonly deployed in LVS (Linux Virtual Server) clusters and Kubernetes service proxies. Unlike IPv4, the IPv6 fixed header may be followed by a chain of optional extension headers (hop-by-hop options, routing, fragmentation, etc.) before the upper-layer protocol header (TCP/UDP). The IPVS checksum validation code erroneously computed the protocol header offset using a fixed size rather than the value already stored in iph->len, which correctly encodes the cumulative offset including all extension headers. This logic error (analogous to CWE-682 Incorrect Calculation or CWE-193 Off-by-one) causes checksum mismatches whenever such packets are processed. The CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* confirms all Linux kernel versions are in scope until the corrective commits are applied. The fix is minimal - substituting iph->len for the incorrect offset - and is backported across multiple stable branches per the seven distinct commits referenced.

RemediationAI

The primary remediation is to upgrade the Linux kernel to version 6.19.4 (stable) or 7.0 (mainline), which incorporate the corrective commits available at https://git.kernel.org/stable/c/05cfe9863ef049d98141dc2969eefde72fb07625, https://git.kernel.org/stable/c/a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4, https://git.kernel.org/stable/c/0bf92a90bf05ecafe52e92d5bc15a585021a64ac, https://git.kernel.org/stable/c/54add3b7d3c154ca89ef5bac2582b0ed1a3a15d5, https://git.kernel.org/stable/c/768f665f3685b455ed686370ed7ccb852a125a3b, https://git.kernel.org/stable/c/9aa7edc1347b98774e5167ca34e5b8aa6083bde7, and https://git.kernel.org/stable/c/cdce1e797addab72393c0dfee31aaca41ef7d937. Downstream distribution users should apply vendor-issued kernel updates as they become available. Where immediate upgrading is not feasible, a targeted workaround is to avoid routing IPv6 packets containing extension headers through IPVS virtual services - this can be enforced via ip6tables rules that drop or redirect such packets before they reach IPVS, at the cost of breaking load balancing for clients that use IPv6 extension headers. Systems that do not load the ip_vs kernel module or do not configure any IPv6 virtual services are entirely unaffected and require no action.

Vendor StatusVendor

SUSE

Severity: Moderate
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Affected
SUSE Linux Enterprise Desktop 15 SP7 Affected
SUSE Linux Enterprise High Availability Extension 15 SP7 Affected
SUSE Linux Enterprise High Availability Extension 15 SP7 Affected
SUSE Linux Enterprise High Performance Computing 15 SP7 Affected

Share

EUVD-2026-32316 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy