CyberRota
← Ana sayfaya dön

CVE-2026-53227

MEDIUM · CVSS 5.5 EPSS %0.14

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-25T09:16:40.520 · Çekilme zamanı: 2026-07-15T12:03:40.064210+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-53227
Severity
MEDIUM
CVSS
5.5
EPSS
%0.14
Linux

Orijinal NVD Açıklaması

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix possible kfree_skb of ERR_PTR After the patch in the "Fixes" tag, the allocation of the "reply" skb can happen either before or after locking the ovs_mutex. However, error cleanups still follow the classical reversed order, assuming "reply" is allocated before locking: it is freed after unlocking. If "reply" allocation happens after locking the mutex and it fails, "reply" is left with an ERR_PTR, and execution jumps to the correspondent cleanup stage which will try to free an invalid pointer. Fix this by setting the pointer to NULL after having saved its error value.