CVE-2026-43057

EUVD-2026-26656

01.05.2026, 15:16

In the Linux kernel, the following vulnerability has been resolved:

net: correctly handle tunneled traffic on IPV6_CSUM GSO fallback

NETIF_F_IPV6_CSUM only advertises support for checksum offload of
packets without IPv6 extension headers. Packets with extension
headers must fall back onto software checksumming. Since TSO
depends on checksum offload, those must revert to GSO.

The below commit introduces that fallback. It always checks
network header length. For tunneled packets, the inner header length
must be checked instead. Extend the check accordingly.

A special case is tunneled packets without inner IP protocol. Such as
RFC 6951 SCTP in UDP. Those are not standard IPv6 followed by
transport header either, so also must revert to the software GSO path.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 28%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	6.1.149 ≤ 𝑥 < 6.1.168
linux	linux_kernel	6.6.103 ≤ 𝑥 < 6.6.134
linux	linux_kernel	6.12.44 ≤ 𝑥 < 6.12.81
linux	linux_kernel	6.16.4 ≤ 𝑥 < 6.17
linux	linux_kernel	6.17.1 < 𝑥 < 6.18.22
linux	linux_kernel	6.19 ≤ 𝑥 < 6.19.12
linux	linux_kernel	6.17
linux	linux_kernel	6.17:rc3
linux	linux_kernel	6.17:rc4
linux	linux_kernel	6.17:rc5
linux	linux_kernel	6.17:rc6
linux	linux_kernel	6.17:rc7
linux	linux_kernel	7.0:rc1
linux	linux_kernel	7.0:rc2
linux	linux_kernel	7.0:rc3
linux	linux_kernel	7.0:rc4
linux	linux_kernel	7.0:rc5

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.170-3 fixed
bookworm (security)	6.1.174-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.257-1 fixed
forky	7.0.10-1 fixed
sid	7.0.12-2 fixed
trixie	6.12.86-1 fixed
trixie (security)	6.12.90-2 fixed

linux-6.1

bullseye (security)

6.1.174-1~deb11u1

fixed

Amazon Linux Releases

Amazon Package

Release

bpftool

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

bpftool-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

bpftool6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

bpftool6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

bpftool6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

bpftool6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-debuginfo-common-aarch64

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-debuginfo-common-x86_64

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-devel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-headers

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf-devel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-libbpf-static

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-livepatch-6.1.168-202.320

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-livepatch-6.12.83-113.160

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-livepatch-6.18.25-52.107

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-modules-extra

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-modules-extra-common

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-tools

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-tools-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel-tools-devel

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

kernel6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-debuginfo-common-aarch64

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-debuginfo-common-x86_64

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-devel

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-headers

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-modules-extra

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-modules-extra-common

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-tools

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-tools-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.12-tools-devel

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

kernel6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-debuginfo-common-aarch64

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-debuginfo-common-x86_64

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-devel

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-headers

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-modules-extra

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-modules-extra-common

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-tools

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-tools-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

kernel6.18-tools-devel

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

perf

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

perf-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

perf6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

perf6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

perf6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

perf6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

python3-perf

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

python3-perf-debuginfo

Amazon Linux 2023

1:6.1.168-202.320.amzn2023

fixed

python3-perf6.12

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

python3-perf6.12-debuginfo

Amazon Linux 2023

1:6.12.83-113.160.amzn2023

fixed

python3-perf6.18

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

python3-perf6.18-debuginfo

Amazon Linux 2023

1:6.18.25-52.107.amzn2023

fixed

Vulnerability Media Exposure

[GERMAN] Linux Kernel: Mehrere Schwachstellen
Ein entfernter Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um Sicherheitsmechanismen zu umgehen, einen Denial-of-Service-Zustand herbeizuführen oder Auswirkungen unbestimmter Art zu erzielen.
Published: 2026-05-03T22:00:00+00:00

References

https://git.kernel.org/stable/c/2094a7cf91b71367b649f991aacc7b579f793d0b

https://git.kernel.org/stable/c/33670f780e0120c3dacda188c512bbffe0b6044c

https://git.kernel.org/stable/c/732fdeb2987c94b439d51f5cb9addddc2fc48c42

https://git.kernel.org/stable/c/a98b78116a27e2a57b696b569b2cb431c95cf9b6

https://git.kernel.org/stable/c/c4336a07eb6b2526dc2b62928b5104b41a7f81f5

https://git.kernel.org/stable/c/ed71cf465c75f5688b07a35d373cd1d6b589c8ea