CVE-2026-46120 | Linux Kernel up to 7.1-rc2 ip6_gre net/core/dev.c ip6erspan_changelink use after free

A vulnerability classified as critical has been found in Linux Kernel up to 6.6.139/6.12.87/6.18.29/7.0.6/7.1-rc2. The affected element is the function ip6erspan_changelink of the file net/core/dev.c of the component ip6_gre. Performing a manipulation results in use after free.

This vulnerability was named CVE-2026-46120. The attack needs to be approached within the local network. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More