CVE-2026-53131 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: require Ethernet MAC header before using eth_hdr()

`ip6t_eui64`, `xt_mac`, the `bitmap:ip,mac`, `hash:ip,mac`, and
`hash:mac` ipset types, and `nf_log_syslog` access `eth_hdr(skb)`
after either assuming that the skb is associated with an Ethernet
device or checking only that the `ETH_HLEN` bytes at
`skb_mac_header(skb)` lie between `skb->head` and `skb->data`.

Make these paths first verify that the skb is associated with an
Ethernet device, that the MAC header was set, and that it spans at
least a full Ethernet header before accessing `eth_hdr(skb)`.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`1da177e4c3f41524e886b7f1b8a0c1fc7321cac2`	affected	< 4435888e1bf139d2bfe5911643d4217382136743
`1da177e4c3f41524e886b7f1b8a0c1fc7321cac2`	affected	< 063f43361e884acd7300790e90194430275d0d0c
`1da177e4c3f41524e886b7f1b8a0c1fc7321cac2`	affected	< 726abf97566867f808fec9d8a408eb9698bd570a
`1da177e4c3f41524e886b7f1b8a0c1fc7321cac2`	affected	< 367abcacc13a8e2e7624408b7f593bd1e60e49d9
`1da177e4c3f41524e886b7f1b8a0c1fc7321cac2`	affected	< 5d634afb8b83b49de562792fd0d047416a43bd4d
`1da177e4c3f41524e886b7f1b8a0c1fc7321cac2`	affected	< cea435ea7e868ea6fdf039bc4f2090c1d829b556
`1da177e4c3f41524e886b7f1b8a0c1fc7321cac2`	affected	< 62443dc21114c0bbc476fa62973db89743f2f137
`0`	affected	< 5.15.210
`0`	affected	< 6.1.176
`0`	affected	< 6.6.143
`0`	affected	< 6.12.94
`0`	affected	< 6.18.36
`0`	affected	< 7.0.13

Linux

affected

Version	Status	Constraints
`5.15.210`	unaffected	≤ 5.15.*
`6.1.176`	unaffected	≤ 6.1.*
`6.6.143`	unaffected	≤ 6.6.*
`6.12.94`	unaffected	≤ 6.12.*
`6.18.36`	unaffected	≤ 6.18.*
`7.0.13`	unaffected	≤ 7.0.*
`7.1`	unaffected	≤ *

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

No data.

Project Subscriptions

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/063f43361e884acd7300790e90194430275d0d0c
https://git.kernel.org/stable/c/367abcacc13a8e2e7624408b7f593bd1e60e49d9
https://git.kernel.org/stable/c/4435888e1bf139d2bfe5911643d4217382136743
https://git.kernel.org/stable/c/5d634afb8b83b49de562792fd0d047416a43bd4d
https://git.kernel.org/stable/c/62443dc21114c0bbc476fa62973db89743f2f137
https://git.kernel.org/stable/c/726abf97566867f808fec9d8a408eb9698bd570a
https://git.kernel.org/stable/c/cea435ea7e868ea6fdf039bc4f2090c1d829b556

History

Thu, 25 Jun 2026 10:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-20

Thu, 25 Jun 2026 09:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header before using eth_hdr() `ip6t_eui64`, `xt_mac`, the `bitmap:ip,mac`, `hash:ip,mac`, and `hash:mac` ipset types, and `nf_log_syslog` access `eth_hdr(skb)` after either assuming that the skb is associated with an Ethernet device or checking only that the `ETH_HLEN` bytes at `skb_mac_header(skb)` lie between `skb->head` and `skb->data`. Make these paths first verify that the skb is associated with an Ethernet device, that the MAC header was set, and that it spans at least a full Ethernet header before accessing `eth_hdr(skb)`.
Title		netfilter: require Ethernet MAC header before using eth_hdr()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/063f43361e884acd7300790e90194430275d0d0c https://git.kernel.org/stable/c/367abcacc13a8e2e7624408b7f593bd1e60e49d9 https://git.kernel.org/stable/c/4435888e1bf139d2bfe5911643d4217382136743 https://git.kernel.org/stable/c/5d634afb8b83b49de562792fd0d047416a43bd4d https://git.kernel.org/stable/c/62443dc21114c0bbc476fa62973db89743f2f137 https://git.kernel.org/stable/c/726abf97566867f808fec9d8a408eb9698bd570a https://git.kernel.org/stable/c/cea435ea7e868ea6fdf039bc4f2090c1d829b556

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-06-25T08:38:20.489Z

Updated: 2026-06-25T08:38:20.489Z

Reserved: 2026-06-09T07:44:35.386Z

Link: CVE-2026-53131

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-25T10:30:17Z

Weaknesses

CWE-20

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object