IPv6 Transport Header Forgery Vulnerability in Linux Kernel by Vendor Crow
CVE-2026-46244

9.1CRITICAL

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 3 June 2026

What is CVE-2026-46244?

A vulnerability in the Linux kernel's handling of inner IPv6 packets leads to a desynchronization issue between the calculated transport header offset and the actual protocol type. The nft_inner_parse_l2l3() function inaccurately overwrites the result of ipv6_find_hdr() with a static value, allowing for potential transport header forgery and firewall bypass. This flaw impacts Linux kernel versions starting from 6.2, necessitating urgent attention for network security.

Affected Version(s)

Linux 3a07327d10a09379315c844c63f27941f5081e0a

Linux 3a07327d10a09379315c844c63f27941f5081e0a < 870d59e2cf218e7418491e26bad768cb16654582

Linux 3a07327d10a09379315c844c63f27941f5081e0a < 689bbf48c1f45130086ae1c46ab83ea4c753c601

References

https://git.kernel.org/stable/c/c161ad9157f5a0429b5ff94d9...

https://git.kernel.org/stable/c/870d59e2cf218e7418491e26b...

https://git.kernel.org/stable/c/689bbf48c1f45130086ae1c46...

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46244 Data

JSON