{"cve":{"cve_id":"CVE-2026-53214","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":null,"epss_percentile":null,"epss_as_of":null,"description":"In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix a potential NPD in cleanup_prefix_route()\n\naddrconf_get_prefix_route() can return the fib6_null_entry sentinel\nentry which has a NULL fib6_table pointer. Therefore, before setting the\nroute's expiration time, check that we are not working with this entry,\nas otherwise a NPD will be triggered [1].\n\nNote that the other callers of addrconf_get_prefix_route() are not\nsusceptible to this bug:\n\n1. addrconf_prefix_rcv(): Requests a route with the 'RTF_ADDRCONF |\n   RTF_PREFIX_RT' flags which are not set on fib6_null_entry.\n\n2. modify_prefix_route(): Fixed by commit a747e02430df (\"ipv6: avoid\n   possible NULL deref in modify_prefix_route()\").\n\n3. __ipv6_ifa_notify(): Calls ip6_del_rt() which specifically checks for\n   fib6_null_entry and returns an error.\n\n[1]\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]\n[...]\nCall Trace:\n<TASK>\n__kasan_check_byte (mm/kasan/common.c:573)\nlock_acquire.part.0 (kernel/locking/lockdep.c:5842 (discriminator 1))\n_raw_spin_lock_bh (kernel/locking/spinlock.c:182 (discriminator 1))\ncleanup_prefix_route (net/ipv6/addrconf.c:1280)\nipv6_del_addr (net/ipv6/addrconf.c:1342)\ninet6_addr_del.isra.0 (net/ipv6/addrconf.c:3119)\ninet6_rtm_deladdr (net/ipv6/addrconf.c:4812)\nrtnetlink_rcv_msg (net/core/rtnetlink.c:6997)\nnetlink_rcv_skb (net/netlink/af_netlink.c:2555)\nnetlink_unicast (net/netlink/af_netlink.c:1344)\nnetlink_sendmsg (net/netlink/af_netlink.c:1899)\n__sock_sendmsg (net/socket.c:802 (discriminator 4))\n____sys_sendmsg (net/socket.c:2698)\n___sys_sendmsg (net/socket.c:2752)\n__sys_sendmsg (net/socket.c:2784)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:121)","published_at":"2026-06-25T08:39:18.209000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":null,"nvd_references":["https://git.kernel.org/stable/c/5f82b02b4059ddc06e4fcfd057bfb59fd6885cd2","https://git.kernel.org/stable/c/192df376a05c2db15564640f9da7e20907c1fa24","https://git.kernel.org/stable/c/07d9a0870a178843cea44cfd58c27445dc94cf5f","https://git.kernel.org/stable/c/653a2849305708f75260b5296f17b2a759ff9cc7","https://git.kernel.org/stable/c/b70c687b7cf267fb08586667a3946c8851cad672"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-28T17:55:28.590503Z","updated_at":"2026-06-28T23:30:51.545322Z"},"effective_severity":null,"badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.9","version_start_inclusive":true,"version_end":"6.9","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.9:6.9"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"0","version_start_inclusive":true,"version_end":"6.9","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:0:6.9"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.6.120","version_start_inclusive":true,"version_end":"6.6.143","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:6.6.120:6.6.143"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"bd12abe294c7738421bdfbc486f1909d02db30e9","version_start_inclusive":true,"version_end":"5f82b02b4059ddc06e4fcfd057bfb59fd6885cd2","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:bd12abe294c7738421bdfbc486f1909d02db30e9:5f82b02b4059ddc06e4fcfd057bfb59fd6885cd2"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"5eb902b8e7193cdcb33242af0a56502e6b5206e9","version_start_inclusive":true,"version_end":"192df376a05c2db15564640f9da7e20907c1fa24","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:5eb902b8e7193cdcb33242af0a56502e6b5206e9:192df376a05c2db15564640f9da7e20907c1fa24"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"5eb902b8e7193cdcb33242af0a56502e6b5206e9","version_start_inclusive":true,"version_end":"07d9a0870a178843cea44cfd58c27445dc94cf5f","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:5eb902b8e7193cdcb33242af0a56502e6b5206e9:07d9a0870a178843cea44cfd58c27445dc94cf5f"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"5eb902b8e7193cdcb33242af0a56502e6b5206e9","version_start_inclusive":true,"version_end":"653a2849305708f75260b5296f17b2a759ff9cc7","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:5eb902b8e7193cdcb33242af0a56502e6b5206e9:653a2849305708f75260b5296f17b2a759ff9cc7"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"5eb902b8e7193cdcb33242af0a56502e6b5206e9","version_start_inclusive":true,"version_end":"b70c687b7cf267fb08586667a3946c8851cad672","version_end_inclusive":false,"cpe23_uri":"cve5:linux:linux:5eb902b8e7193cdcb33242af0a56502e6b5206e9:b70c687b7cf267fb08586667a3946c8851cad672"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.6.143","version_start_inclusive":true,"version_end":"6.6.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.6.143:6.6.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.12.94","version_start_inclusive":true,"version_end":"6.12.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.12.94:6.12.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"6.18.36","version_start_inclusive":true,"version_end":"6.18.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:6.18.36:6.18.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"7.0.13","version_start_inclusive":true,"version_end":"7.0.*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:7.0.13:7.0.*"},{"vendor_slug":"linux","vendor_name":"Linux","product_slug":"linux","product_name":"Linux","version_start":"7.1","version_start_inclusive":true,"version_end":"*","version_end_inclusive":true,"cpe23_uri":"cve5:linux:linux:7.1:*"}],"exploit_refs":[],"news":[],"references":[{"url":"https://git.kernel.org/stable/c/5f82b02b4059ddc06e4fcfd057bfb59fd6885cd2","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/192df376a05c2db15564640f9da7e20907c1fa24","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/07d9a0870a178843cea44cfd58c27445dc94cf5f","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/653a2849305708f75260b5296f17b2a759ff9cc7","source_type":"MISC","tags":[]},{"url":"https://git.kernel.org/stable/c/b70c687b7cf267fb08586667a3946c8851cad672","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2026-06-25T08:39:18.209000Z","label":"CVE published","source":null}]}