U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2026-53221

Change History

New CVE Received from kernel.org 6/25/2026 5:16:39 AM

Action Type Old Value New Value
Added Description

                  
                
              
In the Linux kernel, the following vulnerability has been resolved:

ip6_vti: fix incorrect tunnel matching in vti6_tnl_lookup()

In vti6_tnl_lookup(), when an exact match for a tunnel fails,
the code falls back to searching for wildcard tunnels:

- Tunnels matching the packet's local address, with any remote address
  wildcard remote).

- Tunnels matching the packet's remote address, with any local address
  (wildcard local).

However, vti6 stores all these different types of tunnels in the same
hash table (ip6n->tnls_r_l) prone to hash collisions.

The bug is that the fallback search loops in vti6_tnl_lookup() were
missing checks to ensure that the candidate tunnel actually has
a wildcard address.
Added Reference

                  
                
              
https://git.kernel.org/stable/c/2abfb19bbb81958714ad1d43ebeb65b30394184b
Added Reference

                  
                
              
https://git.kernel.org/stable/c/2fc7bc087cc7085368263d9d37bfe9a0bddd6a2d
Added Reference

                  
                
              
https://git.kernel.org/stable/c/47fb3c2b4203556308e64354b3e78f2ce221d646
Added Reference

                  
                
              
https://git.kernel.org/stable/c/90fd4513315ca07da99cfd8549d3e553a7160f0d
Added Reference

                  
                
              
https://git.kernel.org/stable/c/a5c0359f5cbc51a2e2b114d6041e0f3c73f903e9
Added Reference

                  
                
              
https://git.kernel.org/stable/c/c327fa4fca31415431202e063767a7ae342e19c6
Added Reference

                  
                
              
https://git.kernel.org/stable/c/f513f308cc4bdb4530d033431592ffbc29b7fca1
Added Reference

                  
                
              
https://git.kernel.org/stable/c/fc657ac0767c49839b3ef0b08dc0953ca30883f8
Added Affected

                  
                
              
[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["net/ipv6/ip6_vti.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"c327fa4fca31415431202e063767a7ae342e19c6","versionType":"git","status":"affected"},{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"fc657ac0767c49839b3ef0b08dc0953ca30883f8","versionType":"git","status":"affected"},{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"47fb3c2b4203556308e64354b3e78f2ce221d646","versionType":"git","status":"affected"},{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"f513f308cc4bdb4530d033431592ffbc29b7fca1","versionType":"git","status":"affected"},{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"90fd4513315ca07da99cfd8549d3e553a7160f0d","versionType":"git","status":"affected"},{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"2abfb19bbb81958714ad1d43ebeb65b30394184b","versionType":"git","status":"affected"},{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"2fc7bc087cc7085368263d9d37bfe9a0bddd6a2d","versionType":"git","status":"affected"},{"version":"fbe68ee87522f6eaa10f9076c0a7117e1613f2f7","lessThan":"a5c0359f5cbc51a2e2b114d6041e0f3c73f903e9","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["net/ipv6/ip6_vti.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"3.19","status":"affected"},{"version":"0","lessThan":"3.19","versionType":"semver","status":"unaffected"},{"version":"5.10.259","lessThanOrEqual":"5.10.*","versionType":"semver","status":"unaffected"},{"version":"5.15.210","lessThanOrEqual":"5.15.*","versionType":"semver","status":"unaffected"},{"version":"6.1.176","lessThanOrEqual":"6.1.*","versionType":"semver","status":"unaffected"},{"version":"6.6.143","lessThanOrEqual":"6.6.*","versionType":"semver","status":"unaffected"},{"version":"6.12.94","lessThanOrEqual":"6.12.*","versionType":"semver","status":"unaffected"},{"version":"6.18.36","lessThanOrEqual":"6.18.*","versionType":"semver","status":"unaffected"},{"version":"7.0.13","lessThanOrEqual":"7.0.*","versionType":"semver","status":"unaffected"},{"version":"7.1","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]