Home

Description

An attacker sending tcp, il, rudp, rudp, or gre packets with a length less than the header size would trigger a kernel panic.

PUBLISHED Reserved 2026-05-19 | Published 2026-05-22 | Updated 2026-05-22 | Assigner 9front




CRITICAL: 9.2CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:A/AU:Y/R:A

Product status

Default status
unaffected

863431cff8b47fa20625f4cbee3ea4e92367b152 (git) before 70c97c334171c715df82774d1a47638abaca2db4
affected

References

git.9front.org/...549f938cc8e80c0c2b4218cb12805c/commit.html mitigation

git.9front.org/...9562f90545b7e484dbdcd748236952/commit.html mitigation

git.9front.org/...71c715df82774d1a47638abaca2db4/commit.html mitigation

cve.org (CVE-2026-9054)

nvd.nist.gov (CVE-2026-9054)

Download JSON