GHSA-r67c-r6r6-mj6m
A vulnerability in the Linux kernel's IPv4 implementation related to the handling of fragment gaps (fraggap) in the paged allocation path of __ip_append_data() has been resolved. The issue involved incorrect calculation of allocation and paged lengths, causing the linear area to be undersized and the paged length overstated. This could lead to memory mismanagement during packet processing.
AI Analysis
Technical Summary
The vulnerability in the Linux kernel's IPv4 code occurs in the __ip_append_data() function when processing fragmented packets using the paged allocation path. The calculations for alloclen and pagedlen did not correctly account for fraggap bytes carried over from previous skb buffers, resulting in an undersized linear area and overstated paged length. The fix aligns the paged allocation branch with the non-paged branch by adjusting alloclen and pagedlen to properly include fraggap, preventing incorrect memory handling during packet reassembly.
Potential Impact
The vulnerability could cause improper memory allocation and handling during IPv4 packet fragmentation reassembly, potentially leading to memory corruption or instability in the kernel's network stack. No known exploits in the wild have been reported. The exact impact severity is not quantified by CVSS data.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since this is a Linux kernel vulnerability, monitor official Linux kernel security advisories for patches addressing CVE-2026-53366 and apply updates accordingly.
GHSA-r67c-r6r6-mj6m
Description
A vulnerability in the Linux kernel's IPv4 implementation related to the handling of fragment gaps (fraggap) in the paged allocation path of __ip_append_data() has been resolved. The issue involved incorrect calculation of allocation and paged lengths, causing the linear area to be undersized and the paged length overstated. This could lead to memory mismanagement during packet processing.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability in the Linux kernel's IPv4 code occurs in the __ip_append_data() function when processing fragmented packets using the paged allocation path. The calculations for alloclen and pagedlen did not correctly account for fraggap bytes carried over from previous skb buffers, resulting in an undersized linear area and overstated paged length. The fix aligns the paged allocation branch with the non-paged branch by adjusting alloclen and pagedlen to properly include fraggap, preventing incorrect memory handling during packet reassembly.
Potential Impact
The vulnerability could cause improper memory allocation and handling during IPv4 packet fragmentation reassembly, potentially leading to memory corruption or instability in the kernel's network stack. No known exploits in the wild have been reported. The exact impact severity is not quantified by CVSS data.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since this is a Linux kernel vulnerability, monitor official Linux kernel security advisories for patches addressing CVE-2026-53366 and apply updates accordingly.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- GHSA-r67c-r6r6-mj6m
- Osv Schema Version
- 1.4.0
- Aliases
- ["CVE-2026-53366"]
- Ecosystems
- []
- Database Specific Severity
- null
- Cvss Version
- null
Threat ID: 6a58b3f568715ace43d65e72
Added to database: 07/16/2026, 10:35:33 UTC
Last enriched: 07/16/2026, 10:43:40 UTC
Last updated: 07/16/2026, 19:47:32 UTC
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.