GHSA-4q3h-784r-7xp4
In the Linux kernel, the following vulnerability has been resolved: ip6_vti: set netns_immutable on the fallback device. john1988 and Noam Rathaus reported that vti6_init_net() does not set the netns_immutable flag on the per-netns fallback tunnel device (ip6_vti0). Other similar tunnel drivers (like ip6_tunnel, sit, ip6_gre, and ip_tunnel) correctly set this flag during their fallback device initialization to prevent them from being moved to another network namespace.
AI Analysis
Technical Summary
This vulnerability, identified as CVE-2026-52909, concerns the ip6_vti component and involves setting the netns_immutable flag on the fallback device. The description and technical details provided are limited, with no explicit explanation of the vulnerability's mechanism or impact. No patch or remediation information is available, and no exploits have been observed. The affected version is explicitly stated as version 3.0 of the Microsoft product.
Potential Impact
Due to the lack of detailed information, the exact impact of this vulnerability cannot be determined from the provided data. No known exploits in the wild have been reported, and no CVSS score is available to assess severity. The potential impact remains unclear based on the current information.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or workaround information is provided at this time.
GHSA-4q3h-784r-7xp4
Description
In the Linux kernel, the following vulnerability has been resolved: ip6_vti: set netns_immutable on the fallback device. john1988 and Noam Rathaus reported that vti6_init_net() does not set the netns_immutable flag on the per-netns fallback tunnel device (ip6_vti0). Other similar tunnel drivers (like ip6_tunnel, sit, ip6_gre, and ip_tunnel) correctly set this flag during their fallback device initialization to prevent them from being moved to another network namespace.
CVSS v3.1
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability, identified as CVE-2026-52909, concerns the ip6_vti component and involves setting the netns_immutable flag on the fallback device. The description and technical details provided are limited, with no explicit explanation of the vulnerability's mechanism or impact. No patch or remediation information is available, and no exploits have been observed. The affected version is explicitly stated as version 3.0 of the Microsoft product.
Potential Impact
Due to the lack of detailed information, the exact impact of this vulnerability cannot be determined from the provided data. No known exploits in the wild have been reported, and no CVSS score is available to assess severity. The potential impact remains unclear based on the current information.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or workaround information is provided at this time.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_vex
- Csaf Version
- 2.0
- Publisher
- Microsoft Security Response Center
- Advisory Id
- msrc_CVE-2026-52909
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a42ed7f27e9c7971993ebb4
Added to database: 06/29/2026, 22:11:11 UTC
Last enriched: 06/29/2026, 22:44:29 UTC
Last updated: 07/11/2026, 07:47:30 UTC
Views: 8
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.