{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-53006/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-28T06:37:57.367Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-53006","@id":"https://www.cve.org/CVERecord?id=CVE-2026-53006","description":"In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix possible UAF in icmpv6_rcv()\n\nCaching saddr and daddr before pskb_pull() is problematic\nsince skb->head can change.\n\nRemove these temporary variables:\n\n- We only access &ipv6_hdr(skb)->saddr and &ipv6_hdr(skb)->daddr\n  when net_dbg_ratelimited() is called in the slow path.\n\n- Avoid potential future misuse after pskb_pull() call."},"products":[{"@id":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}},{"@id":"cpe:2.3:a:linux:linux:4.4:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:linux:linux:4.4:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"Update to a fixed version: 0, 0069813e6ca9309eca78022bcb3aeb1e9ef90a12, 085e31a811ef234ef8c3e219c4636dfebfe7e10f, 1e1f0f89ee4692a64be3f3707ff8ac1ae57b03e7, 38bdbc897c0d83a3e2b925a51b69420f1feba29a, 5.10.258, 5.15.209, 6.1.175, 6.6.141, 6.12.91, 6.18.33, 7.0.10, 7.1, 7bff2c8fe5c35ae58bf73104f53db3676e6e5d94, 7c66b368c6ff453f99cb39d84af93e908e51eef2, aff0f28f5be803de2452ce702631c021fcd9ce8a, f996edd7615e686ada141b7f3395025729ff8ccb.","timestamp":"2026-06-28T06:37:57.367Z"}]}