Linux Kernel Vulnerability Affecting ICMP Protocol Handling
CVE-2026-23398

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 March 2026

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2026-23398?

A vulnerability in the Linux kernel's ICMP protocol handling could lead to a kernel panic upon receiving specific ICMP Fragmentation Needed errors. The issue arises from the unconditional dereference of an unregistered protocol's handler, which may result in a NULL pointer dereference. This occurs particularly when the ip_no_pmtu_disc setting is configured with hardened PMTU mode. Proper checks must be implemented to ensure that the protocol has registered handlers before accessing related functions to prevent potential system crashes.

Affected Version(s)

Linux 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e < 1f9f2c6d4b2a613b7756fc5679c5116ba2ca0161

Linux 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e

Linux 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e < 9647e99d2a617c355d2b378be0ff6d0e848fd579

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2026-23398
Created by JohannesLks

cve-2026-23398-poc
Created by zpol

References

https://git.kernel.org/stable/c/1f9f2c6d4b2a613b7756fc567...

https://git.kernel.org/stable/c/b61529c357f1ee4d64836eb14...

https://git.kernel.org/stable/c/9647e99d2a617c355d2b378be...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Apr 6, 2026
👾
Exploit known to exist
Apr 6, 2026
Vulnerability published
Mar 26, 2026
Vulnerability Reserved
Jan 13, 2026

CVE-2026-23398 Data

JSON