Home

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate node_id in arena_alloc_pages() arena_alloc_pages() accepts a plain int node_id and forwards it through the entire allocation chain without any bounds checking. Validate node_id before passing it down the allocation chain in arena_alloc_pages().

PUBLISHED Reserved 2026-06-09 | Published 2026-06-24 | Updated 2026-06-24 | Assigner Linux

Product status

Default status
unaffected

317460317a02a1af512697e6e964298dedd8a163 (git) before 31d3b4b28e55835646d6829d60023f730dd34e85
affected

317460317a02a1af512697e6e964298dedd8a163 (git) before e15900888c09480a4c632bc598f1c5bd39bed6d6
affected

317460317a02a1af512697e6e964298dedd8a163 (git) before fb66e20130f95a93ffea1677252526a9e39170b2
affected

317460317a02a1af512697e6e964298dedd8a163 (git) before 2845989f2ebaf7848e4eccf9a779daf3156ea0a5
affected

Default status
affected

6.9
affected

Any version before 6.9
unaffected

6.12.91 (semver)
unaffected

6.18.33 (semver)
unaffected

7.0.10 (semver)
unaffected

7.1 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/31d3b4b28e55835646d6829d60023f730dd34e85

git.kernel.org/...c/e15900888c09480a4c632bc598f1c5bd39bed6d6

git.kernel.org/...c/fb66e20130f95a93ffea1677252526a9e39170b2

git.kernel.org/...c/2845989f2ebaf7848e4eccf9a779daf3156ea0a5

cve.org (CVE-2026-53031)

nvd.nist.gov (CVE-2026-53031)

Download JSON