Primary

Context

Linux Kernel SRv6 NULL Pointer Dereference Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's handling of Segment Routing over IPv6 (SRv6) can lead to NULL pointer dereferences. This issue arises because the function '__in6_dev_get()' may return NULL when a network device lacks proper IPv6 configuration, such as when the Maximum Transmission Unit (MTU) is below the minimum required for IPv6 or after the device has been unregistered. The vulnerability affects the SRv6 HMAC validation and the reception of IPv6 Segment Routing Headers, where the absence of necessary NULL checks can cause instability or crashes.

Impact

Exploitation of this vulnerability can lead to NULL pointer dereferences, causing kernel crashes or instability.

Added: Apr 3, 2026, 5:09 PM

Updated: Apr 3, 2026, 5:09 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel SRv6 NULL Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating