CVE-2026-45971 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Limit bpf program signature size Practical BPF signatures are significantly smaller than KMALLOC_MAX_CACHE_SIZE Allowing larger sizes opens the door for abuse by passing excessive size values and forcing the kernel into expensive allocation paths (via kmalloc_large or vmalloc).

PUBLISHED Reserved 2026-05-13 | Published 2026-05-27 | Updated 2026-05-27 | Assigner Linux

Product status

Default status

unaffected

349271568303695f0ac3563af153d2b4542f6986 (git) before 5835a077c6f5c565d525eaca9fac01572b97a9b9

affected

349271568303695f0ac3563af153d2b4542f6986 (git) before eb8166c79097996396468a341de258a798789d36

affected

349271568303695f0ac3563af153d2b4542f6986 (git) before ea1535e28bb3773fc0b3cbd1f3842b808016990c

affected

Default status

affected

6.18

affected

Any version before 6.18

unaffected

6.18.14 (semver)

unaffected

6.19.4 (semver)

unaffected

7.0 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/5835a077c6f5c565d525eaca9fac01572b97a9b9

git.kernel.org/...c/eb8166c79097996396468a341de258a798789d36

git.kernel.org/...c/ea1535e28bb3773fc0b3cbd1f3842b808016990c

cve.org (CVE-2026-45971)

nvd.nist.gov (CVE-2026-45971)

Download JSON

help @ threatint.eu