Home

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Switch CONFIG_CFI_CLANG to CONFIG_CFI This was renamed in commit 23ef9d439769 ("kcfi: Rename CONFIG_CFI_CLANG to CONFIG_CFI") as it is now a compiler-agnostic option. Using the wrong name results in the code getting compiled out. Meaning the CFI failures for btf_dtor_kfunc_t would still trigger.

PUBLISHED Reserved 2026-06-09 | Published 2026-06-24 | Updated 2026-06-24 | Assigner Linux

Product status

Default status
unaffected

99fde4d0626176d03cea35c64a063df73816e64d (git) before f74fce43dbc059e059b5346a670f697c0e97b1d0
affected

99fde4d0626176d03cea35c64a063df73816e64d (git) before 9b0cf064ea0a6bac5e1a5fb43b004fd52fbe2b3b
affected

Default status
affected

7.0
affected

Any version before 7.0
unaffected

7.0.10 (semver)
unaffected

7.1 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/f74fce43dbc059e059b5346a670f697c0e97b1d0

git.kernel.org/...c/9b0cf064ea0a6bac5e1a5fb43b004fd52fbe2b3b

cve.org (CVE-2026-53099)

nvd.nist.gov (CVE-2026-53099)

Download JSON