Linux kernel versions 5.15.206 and 6.1.172 have released a patch to fix a flag handling bug in the IPsec networking stack, which caused silent connection drops and corrupted traffic during IPv4 packet decryption due to a coding typo. The incorrect assignment of transmit flags instead of state flags led to issues primarily affecting systems using active VPNs or encrypted tunnels. Users can easily apply the updates through their standard package manager, ensuring system stability without the need for manual compilation. Maintaining an updated kernel is crucial for preventing security vulnerabilities and improving network performance, particularly for those relying on encrypted connections

Linux Kernel 5.15.206 and 6.1.172 released

Linux kernel versions 5.15.206 and 6.1.172 just shipped a patch that fixes a flag handling bug in the IPsec networking stack. The issue started when a recent commit accidentally wrote to the transmit flags variable instead of the correct state flags during IPv4 packet decryption. That single typo caused silent connection drops and corrupted traffic on any system running active VPNs or encrypted tunnels. Running your standard package manager update pulls the fix straight into your system without needing manual compilation or risky workarounds.

Linux Kernel 5.15.206 and 6.1.172 released @ Linux Compatible