What is CVE-2026-53221?

CVE-2026-53221 is a unscored severity Linux kernel vulnerability. CVE-2026-53221 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2026-53221?

CVE-2026-53221 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2026-53221?

No patch is currently available for CVE-2026-53221. Monitor the NIST NVD and your Linux distribution's security advisories for updates.

Is CVE-2026-53221 actively exploited?

CVE-2026-53221 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2026-53221

In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix incorrect tunnel matching in vti6_tnl_lookup() In vti6_tnl_lookup(), when an exact match for a tunnel fails, the code falls back to searching for wildcard tunnels: - Tunnels matching the packet's local address, with any remote address wildcard remote). - Tunnels matching the packet's remote address, with any local address (wildcard local). However, vti6 stores all these different types of tunnels in the same hash table (ip6n->tnls_r_l) prone to hash collisions. The bug is that the fallback search loops in vti6_tnl_lookup() were missing checks to ensure that the candidate tunnel actually has a wildcard address.

Package Linux Kernel

Published 2026-06-25

Last modified 2026-06-25

Patch available

Awaiting data