Main Vulnerability Database SB20260406120

SB20260406120 - Race condition in Linux kernel xfrm

Published: April 6, 2026

Security Bulletin ID SB20260406120

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Race condition (CVE-ID: CVE-2026-31406)

The vulnerability allows a local user to cause a denial of service.

The vulnerability exists due to a race condition in xfrm_nat_keepalive_net_fini() and nat_keepalive_work when cleaning up network namespaces. A local user can trigger network namespace cleanup to cause a denial of service.

The issue occurs because delayed work may be re-scheduled after cancellation and then execute on a freed net structure.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/21f2fc49ca6faa393c31da33b8a4e6c41fc84c13
https://git.kernel.org/stable/c/2255ed6adbc3100d2c4a83abd9d0396d04b87792
https://git.kernel.org/stable/c/32d0f44c2f14d60fe8e920e69a28c11051543ec1
https://git.kernel.org/stable/c/daf8e3b253aa760ff9e96c7768a464bc1d6b3c90