CVE-2026-53269 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: add mutex to guard hook reference counting As the synproxy infrastructure register netfilter hooks on-demand when a user adds the first iptables target or nftables expression, if done concurrently they can race each other. Introduce a mutex to serialize the refcount control blocks access from both frontends. While a per namespace mutex might be more efficient, it is not needed for target/expression like SYNPROXY.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/0ec9ddc1bda261a2c57636c74c8b4e53000102c9
https://git.kernel.org/stable/c/0f8ba5e4c53d2e4a536aa68140beda9fe59b2f88
https://git.kernel.org/stable/c/2fcba19caaeb2a33017459d3430f057967bb91b6
https://git.kernel.org/stable/c/56ffbe3a08c01dcdb0d6adee9ce1e535bfb3b389
https://git.kernel.org/stable/c/640441348258220e78daed40528b85b8afcedab6
https://git.kernel.org/stable/c/aaf80701dc2f7a48fe543961e21f8ca3924d587c
https://git.kernel.org/stable/c/debc57b83d5b323df74bf010c8d50fe26ad2ed6b
https://git.kernel.org/stable/c/fbf0591275f50eae5733c3d7a8cd6c1e79933ffa

History

Thu, 25 Jun 2026 09:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: add mutex to guard hook reference counting As the synproxy infrastructure register netfilter hooks on-demand when a user adds the first iptables target or nftables expression, if done concurrently they can race each other. Introduce a mutex to serialize the refcount control blocks access from both frontends. While a per namespace mutex might be more efficient, it is not needed for target/expression like SYNPROXY.
Title		netfilter: synproxy: add mutex to guard hook reference counting
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/0ec9ddc1bda261a2c57636c74c8b4e53000102c9 https://git.kernel.org/stable/c/0f8ba5e4c53d2e4a536aa68140beda9fe59b2f88 https://git.kernel.org/stable/c/2fcba19caaeb2a33017459d3430f057967bb91b6 https://git.kernel.org/stable/c/56ffbe3a08c01dcdb0d6adee9ce1e535bfb3b389 https://git.kernel.org/stable/c/640441348258220e78daed40528b85b8afcedab6 https://git.kernel.org/stable/c/aaf80701dc2f7a48fe543961e21f8ca3924d587c https://git.kernel.org/stable/c/debc57b83d5b323df74bf010c8d50fe26ad2ed6b https://git.kernel.org/stable/c/fbf0591275f50eae5733c3d7a8cd6c1e79933ffa

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-06-25T08:39:55.172Z

Updated: 2026-06-25T08:39:55.172Z

Reserved: 2026-06-09T07:44:35.395Z

Link: CVE-2026-53269

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object