18Mar
CVE-2024-26641 | Linux Kernel up to 5.10.209/5.15.148/6.1.76/6.6.15/6.7.3 ip6_tunnel include/net/inet_ecn.h __ip6_tnl_rcv initialization
A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.10.209/5.15.148/6.1.76/6.6.15/6.7.3. Affected by this issue is the function__ip6_tnl_rcv
in the library include/net/inet_ecn.h of the component ip6_tunnel. The manipulation leads to improper initialization.
This vulnerability is handled as CVE-2024-26641. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.