Primary

Context

Linux Kernel IP Tunnel Statistics Handling Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's IP tunnel implementation has been addressed. The issue arose because the function 'iptunnel_xmit_stats()' was not properly handling different types of per-CPU statistics for devices using VXLAN or Geneve tunnels. This oversight could lead to data corruption or system freezes on 32-bit kernels. The vulnerability was caused by the 'syncp' sequence being overwritten, disrupting the normal operation of the statistics tracking. The patch corrects this by ensuring that the statistics function appropriately recognizes the type of statistics being used, and also optimizes the code to prevent potential performance issues.

Impact

Exploitation of this vulnerability could cause data corruption or system freezes on 32-bit Linux kernels.

Added: Apr 3, 2026, 4:55 PM

Updated: Apr 3, 2026, 4:55 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

5.0

exploitability

3.5

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

5.0

exploitability

3.5

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel IP Tunnel Statistics Handling Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating