Concurrency Issue in Linux Kernel's Netfilter Component for SYNPROXY
CVE-2026-53269

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 June 2026

What is CVE-2026-53269?

A race condition has been identified within the Linux Kernel's Netfilter component relating to SYNPROXY. This issue arises when the synproxy infrastructure registers netfilter hooks concurrently during the initial addition of iptables targets or nftables expressions. The introduction of a mutex serves to serialize the reference count control, thereby preventing conflicts that could compromise system integrity. While implementing a per namespace mutex option exists, it is not deemed necessary for targets or expressions such as SYNPROXY.

Affected Version(s)

Linux ad49d86e07a497e834cb06f2b151dccd75f8e148 < 0ec9ddc1bda261a2c57636c74c8b4e53000102c9

Linux ad49d86e07a497e834cb06f2b151dccd75f8e148 < 56ffbe3a08c01dcdb0d6adee9ce1e535bfb3b389

Linux ad49d86e07a497e834cb06f2b151dccd75f8e148

References

https://git.kernel.org/stable/c/0ec9ddc1bda261a2c57636c74...

https://git.kernel.org/stable/c/56ffbe3a08c01dcdb0d6adee9...

https://git.kernel.org/stable/c/debc57b83d5b323df74bf010c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53269 Data

JSON