Vulnerability in Linux Kernel Affecting Raw Sockets Functionality
CVE-2026-46266

9.1CRITICAL

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 3 June 2026

What is CVE-2026-46266?

A identified vulnerability in the Linux kernel arises from improper handling of raw sockets with the IPPROTO_RAW protocol setting. When a RAW socket is established on protocol 255, malicious ICMP packets can be crafted to exploit this socket. This allows attackers to instigate unwanted changes in the Forwarding Network Header Extension (FNHE) cache. As a result, critical network functions could be disrupted. To mitigate this threat, incoming ICMP packets must be dropped if they match this socket configuration, thus protecting the integrity and security of the network communications.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 19e42490c89bac9a388f28179e66bebbef350f99

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 531c1aec81bfe19d00af13da5531fbb8209e4bd2

References

https://git.kernel.org/stable/c/db76b75ede3810e7cf9cfea50...

https://git.kernel.org/stable/c/19e42490c89bac9a388f28179...

https://git.kernel.org/stable/c/531c1aec81bfe19d00af13da5...

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46266 Data

JSON