CVE-2026-45971

Published: May 27, 2026

Modified: May 27, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Limit bpf program signature size Practical BPF signatures are significantly smaller than KMALLOC_MAX_CACHE_SIZE Allowing larger sizes opens the door for abuse by passing excessive size values and forcing the kernel into expensive allocation paths (via kmalloc_large or vmalloc).

Vendor	Product	Versions
Linux	Linux	affected `349271568303695f0ac3563af153d2b4542f6986 - < 5835a077c6f5c565d525eaca9fac01572b97a9b9` affected `349271568303695f0ac3563af153d2b4542f6986 - < eb8166c79097996396468a341de258a798789d36` affected `349271568303695f0ac3563af153d2b4542f6986 - < ea1535e28bb3773fc0b3cbd1f3842b808016990c`
Linux	Linux	affected `6.18` unaffected `0 - < 6.18` unaffected `6.18.14 - <= 6.18.` unaffected `6.19.4 - <= 6.19.` unaffected `7.0 - <= *`

References

https://git.kernel.org/stable/c/5835a077c6f5c565d525eaca9fac01572b97a9b9

https://git.kernel.org/stable/c/eb8166c79097996396468a341de258a798789d36

https://git.kernel.org/stable/c/ea1535e28bb3773fc0b3cbd1f3842b808016990c

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-45971

Description

Affected Products

References