CVE-2026-23139

MEDIUM EPSS 24.5%
Published Feb 14, 20264mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 14, 2026 4mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: update last_gc only when GC has been performed Currently last_gc is being updated everytime a new connection is tracked, that means that it is updated even if a GC wasn't performed. With a sufficiently high packet rate, it is possible to always bypass the GC, causing the list to grow infinitely. Update the last_gc value only when a GC has been actually performed.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
24.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥5.19  –  <6.1.161
linuxlinux_kernel*≥6.2  –  <6.6.121
linuxlinux_kernel*≥6.7  –  <6.12.66
linuxlinux_kernel*≥6.13  –  <6.18.6
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/26a82dce2beee39c43c109d9647e16f49cb02a35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2c7c71113ed6d3e2f3aca4c088f22283016ff34f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3cd717359e56f82f06cbf8279b47a7d79880c6f3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7811ba452402d58628e68faedf38745b3d485e3c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8bdafdf4900040a81422056cabe5e00a37bd101a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9f45588993d7f115280fc726119ca86fba32a811
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c4cde57c8affdcca5bcff53a1047e15d268bdca1
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/26a82dce2beee39c43c109d9647e16f49cb02a35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2c7c71113ed6d3e2f3aca4c088f22283016ff34f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3cd717359e56f82f06cbf8279b47a7d79880c6f3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7811ba452402d58628e68faedf38745b3d485e3c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8bdafdf4900040a81422056cabe5e00a37bd101a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9f45588993d7f115280fc726119ca86fba32a811
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c4cde57c8affdcca5bcff53a1047e15d268bdca1
    Patch