CVE-2026-53238

Source
https://cve.org/CVERecord?id=CVE-2026-53238
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-53238.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-53238
Downstream
Related
Published
2026-06-25T08:39:34.492Z
Modified
2026-07-11T03:55:28.693063886Z
Summary
netlabel: validate unlabeled address and mask attribute lengths
Details

In the Linux kernel, the following vulnerability has been resolved:

netlabel: validate unlabeled address and mask attribute lengths

netlblunlabeladdrinfoget() used the address attribute length to determine whether the attribute data could be read as an IPv4 or IPv6 address, but did not independently validate the corresponding mask attribute length. A crafted Generic Netlink request could therefore provide a valid IPv4/IPv6 address attribute with a shorter mask attribute, which would later be read as a full struct inaddr or struct in6_addr.

NLABINARY policy lengths are maximum lengths by default, so use NLAPOLICYEXACTLEN() for the unlabeled IPv4/IPv6 address and mask attributes. This rejects short attributes during policy validation and also exposes the exact length requirements through policy introspection.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53238.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
8cc44579d1bd77ba3a32f2cb76fd9669c229c5fd
Fixed
975a84fd741440853380d37465b6e226cf47254c
Fixed
672f0f3b8f875ffe6525a37847eafa7648c4c0c6
Fixed
95bda3eac0b1454c2cee98d58d9ba6dd8391e843
Fixed
07a18f5c90dd3d586b73242f5a5bbf0a72f2fdc6
Fixed
71c52da13c3737493b42d20d9f33de34e03b3156
Fixed
0c4bb32ad7fdc2dc6a8050f41eb04d4bda56b6c8
Fixed
ccfe292a966079c61ea68a2da303b2a336170993
Fixed
9772589b57e44aedc240211c5c3f7a684a034d3a

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-53238.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.25
Fixed
5.10.259
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.210
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.176
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.143
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.94
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.36
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.13

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-53238.json"