VOOZH about

URL: https://nvd.nist.gov/vuln/detail/CVE-2026-45850

⇱ NVD - CVE-2026-45850


  1. Vulnerabilities

CVE-2026-45850 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: ipvs: skip ipv6 extension headers for csum checks Protocol checksum validation fails for IPv6 if there are extension headers before the protocol header. iph->len already contains its offset, so use it to fix the problem.


Metrics

 
NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL Source(s) Tag(s)
https://git.kernel.org/stable/c/05cfe9863ef049d98141dc2969eefde72fb07625 kernel.org Patch 
https://git.kernel.org/stable/c/0bf92a90bf05ecafe52e92d5bc15a585021a64ac kernel.org Patch 
https://git.kernel.org/stable/c/54add3b7d3c154ca89ef5bac2582b0ed1a3a15d5 kernel.org Patch 
https://git.kernel.org/stable/c/768f665f3685b455ed686370ed7ccb852a125a3b kernel.org Patch 
https://git.kernel.org/stable/c/9aa7edc1347b98774e5167ca34e5b8aa6083bde7 kernel.org Patch 
https://git.kernel.org/stable/c/a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4 kernel.org Patch 
https://git.kernel.org/stable/c/cdce1e797addab72393c0dfee31aaca41ef7d937 kernel.org Patch 
https://git.kernel.org/stable/c/d643c1ec80b70508f54dac12179e36920e2c00de kernel.org Patch 

Weakness Enumeration

CWE-ID CWE Name Source
NVD-CWE-noinfo Insufficient Information πŸ‘ cwe source acceptance level
NIST  

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

4 change records found show changes

Initial Analysis by NIST 6/25/2026 5:03:27 PM

Action Type Old Value New Value
Added CVSS V3.1
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H


Added CWE
NVD-CWE-noinfo


Added CPE Configuration
OR
 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.19 up to (excluding) 6.19.4
 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.16 up to (excluding) 6.1.176
 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.2 up to (excluding) 6.6.143
 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.11 up to (excluding) 5.15.210
 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 2.6.28 up to (excluding) 5.10.259
 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.13 up to (excluding) 6.18.36
 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 6.7 up to (excluding) 6.12.94


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/05cfe9863ef049d98141dc2969eefde72fb07625 Types: Patch


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/0bf92a90bf05ecafe52e92d5bc15a585021a64ac Types: Patch


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/54add3b7d3c154ca89ef5bac2582b0ed1a3a15d5 Types: Patch


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/768f665f3685b455ed686370ed7ccb852a125a3b Types: Patch


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/9aa7edc1347b98774e5167ca34e5b8aa6083bde7 Types: Patch


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4 Types: Patch


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/cdce1e797addab72393c0dfee31aaca41ef7d937 Types: Patch


Added Reference Type
kernel.org: https://git.kernel.org/stable/c/d643c1ec80b70508f54dac12179e36920e2c00de Types: Patch


CVE Modified by kernel.org 6/19/2026 9:16:30 AM

Action Type Old Value New Value
Added Reference
https://git.kernel.org/stable/c/0bf92a90bf05ecafe52e92d5bc15a585021a64ac


Added Reference
https://git.kernel.org/stable/c/54add3b7d3c154ca89ef5bac2582b0ed1a3a15d5


Added Reference
https://git.kernel.org/stable/c/768f665f3685b455ed686370ed7ccb852a125a3b


Added Reference
https://git.kernel.org/stable/c/9aa7edc1347b98774e5167ca34e5b8aa6083bde7


Added Reference
https://git.kernel.org/stable/c/cdce1e797addab72393c0dfee31aaca41ef7d937


Added Reference
https://git.kernel.org/stable/c/d643c1ec80b70508f54dac12179e36920e2c00de


Changed Affected
[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["net/netfilter/ipvs/ip_vs_proto_sctp.c","net/netfilter/ipvs/ip_vs_proto_tcp.c","net/netfilter/ipvs/ip_vs_proto_udp.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"05cfe9863ef049d98141dc2969eefde72fb07625","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["net/netfilter/ipvs/ip_vs_proto_sctp.c","net/netfilter/ipvs/ip_vs_proto_tcp.c","net/netfilter/ipvs/ip_vs_proto_udp.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"2.6.28","status":"affected"},{"version":"0","lessThan":"2.6.28","versionType":"semver","status":"unaffected"},{"version":"6.19.4","lessThanOrEqual":"6.19.*","versionType":"semver","status":"unaffected"},{"version":"7.0","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]


Record truncated, showing 2048 of 2648 characters.
View Entire Change Record
[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["net/netfilter/ipvs/ip_vs_proto_sctp.c","net/netfilter/ipvs/ip_vs_proto_tcp.c","net/netfilter/ipvs/ip_vs_proto_udp.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"0bf92a90bf05ecafe52e92d5bc15a585021a64ac","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"54add3b7d3c154ca89ef5bac2582b0ed1a3a15d5","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"768f665f3685b455ed686370ed7ccb852a125a3b","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"9aa7edc1347b98774e5167ca34e5b8aa6083bde7","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"d643c1ec80b70508f54dac12179e36920e2c00de","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"cdce1e797addab72393c0dfee31aaca41ef7d937","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"05cfe9863ef049d98141dc2969eefde72fb07625","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["net/netfilter/ipvs/ip_vs_proto_sctp.c","net/netfilter/ipvs/ip_vs_proto_tcp.c","net/netfilter/ipvs/ip_vs_proto_udp.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"2.6.28","status":"affected"},{"version":"0","lessThan":"2.6.28","versionType":"semver","status":"unaffected"},{"version":"5.10.259","lessThanOrEqual":"5.10.*","versionType":"semver","status":"unaffected"},{"version":"5.15.210","lessThanOrEqual":"5.15.*","versionType":"se

CVE Modified by kernel.org 6/17/2026 6:52:36 AM

Action Type Old Value New Value
Added Affected
[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["net/netfilter/ipvs/ip_vs_proto_sctp.c","net/netfilter/ipvs/ip_vs_proto_tcp.c","net/netfilter/ipvs/ip_vs_proto_udp.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4","versionType":"git","status":"affected"},{"version":"0bbdd42b7efa66685b6d74701bcde3a596a3a59d","lessThan":"05cfe9863ef049d98141dc2969eefde72fb07625","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["net/netfilter/ipvs/ip_vs_proto_sctp.c","net/netfilter/ipvs/ip_vs_proto_tcp.c","net/netfilter/ipvs/ip_vs_proto_udp.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"2.6.28","status":"affected"},{"version":"0","lessThan":"2.6.28","versionType":"semver","status":"unaffected"},{"version":"6.19.4","lessThanOrEqual":"6.19.*","versionType":"semver","status":"unaffected"},{"version":"7.0","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]


New CVE Received from kernel.org 5/27/2026 10:16:56 AM

Action Type Old Value New Value
Added Description
In the Linux kernel, the following vulnerability has been resolved:

ipvs: skip ipv6 extension headers for csum checks

Protocol checksum validation fails for IPv6 if there are extension
headers before the protocol header. iph->len already contains its
offset, so use it to fix the problem.


Added Reference
https://git.kernel.org/stable/c/05cfe9863ef049d98141dc2969eefde72fb07625


Added Reference
https://git.kernel.org/stable/c/a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4


Quick Info

CVE Dictionary Entry:
CVE-2026-45850
NVD Published Date:
05/27/2026
NVD Last Modified:
06/25/2026
Source:
kernel.org