Out-of-Bounds Read Vulnerability in Linux Kernel Network Framework
CVE-2026-53268

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 June 2026

What is CVE-2026-53268?

A vulnerability exists in the Linux kernel's netfilter concerning the conntrack_irc component, which could result in an out-of-bounds read. When parsing communication commands, improper handling of the matching process may lead to undesired read attempts beyond allocated buffers. This could provoke instability or unauthorized information exposure. Given the diminishing relevance of this component with the widespread use of TLS protocols, it is suggested that this helper be deprecated.

Affected Version(s)

Linux 869f37d8e48f3911eb70f38a994feaa8f8380008 < 4cdda7f868f48e2f81579371584fdbdce37df2c8

Linux 869f37d8e48f3911eb70f38a994feaa8f8380008 < 8a1d6e40dedfe1068aee094d851bd69e289c9fd6

Linux 869f37d8e48f3911eb70f38a994feaa8f8380008 < 0afc802160af0df61ed374fdb97fb34cfe5cdf2f

References

https://git.kernel.org/stable/c/4cdda7f868f48e2f815793715...

https://git.kernel.org/stable/c/8a1d6e40dedfe1068aee094d8...

https://git.kernel.org/stable/c/0afc802160af0df61ed374fdb...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53268 Data

JSON