CVE-2026-45850

Summary

In the Linux kernel, the following vulnerability has been resolved:

ipvs: skip ipv6 extension headers for csum checks

Protocol checksum validation fails for IPv6 if there are extension headers before the protocol header. iph->len already contains its offset, so use it to fix the problem.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < 0bf92a90bf05ecafe52e92d5bc15a585021a64acaffected
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < 54add3b7d3c154ca89ef5bac2582b0ed1a3a15d5affected
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < 768f665f3685b455ed686370ed7ccb852a125a3baffected
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < 9aa7edc1347b98774e5167ca34e5b8aa6083bde7affected
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < d643c1ec80b70508f54dac12179e36920e2c00deaffected
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < cdce1e797addab72393c0dfee31aaca41ef7d937affected
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4affected
LinuxLinux0bbdd42b7efa66685b6d74701bcde3a596a3a59d < 05cfe9863ef049d98141dc2969eefde72fb07625affected
LinuxLinux2.6.28affected
LinuxLinux0 < 2.6.28unaffected
LinuxLinux5.10.259 <= 5.10.*unaffected
LinuxLinux5.15.210 <= 5.15.*unaffected
LinuxLinux6.1.176 <= 6.1.*unaffected
LinuxLinux6.6.143 <= 6.6.*unaffected
LinuxLinux6.12.94 <= 6.12.*unaffected
LinuxLinux6.18.36 <= 6.18.*unaffected
LinuxLinux6.19.4 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References