PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-53070 Linux CVE debrief

CVE-2026-53070 is a HIGH severity vulnerability in the Linux kernel, affecting SCTP UDP transmission. The vulnerability arises from the improper handling of BH (bottom half) disabling in the udp_tunnel_xmit_skb() and udp_tunnel6_xmit_skb() functions. This can lead to incorrect recursion level detection, causing packets to be dropped in ip(6)_tunnel_xmit() or __dev_queue_xmit(). The issue was resolved by disabling BH around both IPv4 and IPv6 SCTP UDP xmit paths. This fix ensures that dev_xmit_recursion_inc()/dec() stay balanced on the same CPU, preventing potential packet drops.

Vendor
Linux
Product
Unknown
CVSS
HIGH 7.5
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-24
Original CVE updated
2026-06-28
Advisory published
2026-06-24
Advisory updated
2026-06-28

Who should care

System administrators and security teams responsible for Linux kernel-based systems, particularly those utilizing SCTP (Stream Control Transmission Protocol) over UDP, should be aware of this vulnerability. The vulnerability's impact is significant, with a CVSS score of 7.5, indicating a HIGH severity level. Affected systems may experience packet drops or other transmission issues if not properly patched.

Technical summary

The Linux kernel vulnerability CVE-2026-53070 is related to the SCTP (Stream Control Transmission Protocol) implementation over UDP (User Datagram Protocol). The udp_tunnel_xmit_skb() and udp_tunnel6_xmit_skb() functions expect BH (bottom half) to be disabled. However, without local_bh_disable(), the context may move between CPUs, disrupting the balance of dev_xmit_recursion_inc()/dec(). This imbalance can lead to incorrect recursion level detection, causing packets to be dropped. The fix involves disabling BH around both IPv4 and IPv6 SCTP UDP xmit paths to ensure that the recursion level is accurately detected and packets are transmitted correctly.

Defensive priority

Apply the patch to disable BH around SCTP UDP xmit paths. Verify that Linux kernel versions and SCTP configurations are up-to-date and patched.

Recommended defensive actions

  • Apply the official patch to disable BH around SCTP UDP xmit paths
  • Verify and update Linux kernel versions to ensure SCTP configurations are patched
  • Monitor system logs for potential packet drops or transmission issues related to SCTP over UDP
  • Perform regular vulnerability assessments to identify potential Linux kernel vulnerabilities
  • Implement compensating controls, such as redundant transmission paths or monitoring, if patching is not immediately feasible

Evidence notes

The CVE-2026-53070 vulnerability was resolved through a patch that disables BH around SCTP UDP xmit paths. The issue arises from improper handling of BH disabling in udp_tunnel_xmit_skb() and udp_tunnel6_xmit_skb(). The patch ensures that dev_xmit_recursion_inc()/dec() stay balanced on the same CPU, preventing packet drops. The vulnerability has a CVSS score of 7.5, indicating HIGH severity.

Official resources

This AI-assisted CVE debrief is based on the supplied source corpus and provides an overview of CVE-2026-53070, a HIGH severity vulnerability in the Linux kernel affecting SCTP UDP transmission.