{"cve":{"cve_id":"CVE-2026-52925","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":null,"epss_percentile":null,"epss_as_of":null,"description":"In the Linux kernel, the following vulnerability has been resolved:\n\nvrf: Fix a potential NPD when removing a port from a VRF\n\nRCU readers that identified a net device as a VRF port using\nnetif_is_l3_slave() assume that a subsequent call to\nnetdev_master_upper_dev_get_rcu() will return a VRF device. They then\ncontinue to dereference its l3mdev operations.\n\nThis assumption is not always correct and can result in a NPD [1]. There\nis no RCU synchronization when removing a port from a VRF, so it is\npossible for an RCU reader to see a new master device (e.g., a bridge)\nthat does not have l3mdev operations.\n\nFix by adding RCU synchronization after clearing the IFF_L3MDEV_SLAVE\nflag. Skip this synchronization when a net device is removed from a VRF\nas part of its deletion and when the VRF device itself is deleted. In\nthe latter case an RCU grace period will pass by the time RTNL is\nreleased.\n\n[1]\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n[...]\nRIP: 0010:l3mdev_fib_table_rcu (net/l3mdev/l3mdev.c:181)\n[...]\nCall Trace:\n<TASK>\nl3mdev_fib_table_by_index (net/l3mdev/l3mdev.c:201 net/l3mdev/l3mdev.c:189)\n__inet_bind (net/ipv4/af_inet.c:499 (discriminator 3))\ninet_bind_sk (net/ipv4/af_inet.c:469)\n__sys_bind (./include/linux/file.h:62 (discriminator 1) ./include/linux/file.h:83 (discriminator 1) net/socket.c:1951 (discriminator 1))\n__x64_sys_bind (net/socket.c:1969 (discriminator 1) net/socket.c:1967 (discriminator 1) net/socket.c:1967 (discriminator 1))\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)","published_at":"2026-06-24T07:14:19.351000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":null,"nvd_references":["https://git.kernel.org/stable/c/2c022f582fd16a470df6ed9e7fb7e9fc48946d49","https://git.kernel.org/stable/c/4ab6fc60ed5a0344b60711b09bff1dc238d8d6a4","https://git.kernel.org/stable/c/468defa0b70902a22f4478c1207624bc1b31c124","https://git.kernel.org/stable/c/3db8d078f7f652379ee394132b169d304f6eb4c1","https://git.kernel.org/stable/c/8c2b792f04a3db97c9d8d2a45817e93f8884baf5","https://git.kernel.org/stable/c/a7a97f2303e63ede105c1d55ef53dc497364e11d","https://git.kernel.org/stable/c/d47204c127992da0c976ac9747070a575912e0fe","https://git.kernel.org/stable/c/2674d603a9e6970463b2b9ebcf8e31e90beae169"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-28T17:55:22.518073Z","updated_at":"2026-06-28T23:30:49.088205Z"},"effective_severity":null,"badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"2c022f582fd16a470df6ed9e7fb7e9fc48946d49","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:2c022f582fd16a470df6ed9e7fb7e9fc48946d49"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"4ab6fc60ed5a0344b60711b09bff1dc238d8d6a4","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:4ab6fc60ed5a0344b60711b09bff1dc238d8d6a4"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"468defa0b70902a22f4478c1207624bc1b31c124","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:468defa0b70902a22f4478c1207624bc1b31c124"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"3db8d078f7f652379ee394132b169d304f6eb4c1","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:3db8d078f7f652379ee394132b169d304f6eb4c1"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"8c2b792f04a3db97c9d8d2a45817e93f8884baf5","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:8c2b792f04a3db97c9d8d2a45817e93f8884baf5"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"a7a97f2303e63ede105c1d55ef53dc497364e11d","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:a7a97f2303e63ede105c1d55ef53dc497364e11d"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"d47204c127992da0c976ac9747070a575912e0fe","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:d47204c127992da0c976ac9747070a575912e0fe"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"fdeea7be88b12742bfd50d9e19a06c0d2e702400","version_start_inclusive":true,"version_end":"2674d603a9e6970463b2b9ebcf8e31e90beae169","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:fdeea7be88b12742bfd50d9e19a06c0d2e702400:2674d603a9e6970463b2b9ebcf8e31e90beae169"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"4.12","version_start_inclusive":true,"version_end":"4.12","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:4.12:4.12"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"0","version_start_inclusive":true,"version_end":"4.12","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:0:4.12"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"5.10.258","version_start_inclusive":true,"version_end":"5.10.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:5.10.258:5.10.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"5.15.209","version_start_inclusive":true,"version_end":"5.15.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:5.15.209:5.15.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.1.175","version_start_inclusive":true,"version_end":"6.1.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.1.175:6.1.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.6.141","version_start_inclusive":true,"version_end":"6.6.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.6.141:6.6.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.12.91","version_start_inclusive":true,"version_end":"6.12.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.12.91:6.12.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.18.33","version_start_inclusive":true,"version_end":"6.18.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.18.33:6.18.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"7.0.10","version_start_inclusive":true,"version_end":"7.0.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:7.0.10:7.0.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"7.1","version_start_inclusive":true,"version_end":"*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:7.1:*"}],"exploit_refs":[],"news":[],"references":[{"url":"https://git.kernel.org/stable/c/2c022f582fd16a470df6ed9e7fb7e9fc48946d49","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/4ab6fc60ed5a0344b60711b09bff1dc238d8d6a4","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/468defa0b70902a22f4478c1207624bc1b31c124","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/3db8d078f7f652379ee394132b169d304f6eb4c1","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/8c2b792f04a3db97c9d8d2a45817e93f8884baf5","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/a7a97f2303e63ede105c1d55ef53dc497364e11d","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/d47204c127992da0c976ac9747070a575912e0fe","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/2674d603a9e6970463b2b9ebcf8e31e90beae169","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2026-06-24T07:14:19.351000Z","label":"CVE published","source":null}]}