Improper input validation in Linux kernel - CVE-2026-53091
Published: June 25, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to improper validation of gso packet headers in qdisc_pkt_len_segs_init() when processing malicious gso packets. A remote attacker can send a specially crafted packet to cause a denial of service.
The issue affects the transmit path for gso packets and malformed packets may be dropped during processing.