CVE-2026-45847

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: remove WARN_ON_ONCE when accessing forward path array

Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARN_ON_ONCE if userspace manages to build a sufficiently long forward path.

Remove it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxddb94eafab8b597b05904c8277194ea2d6357fa9 < 548244c2f542aa0ad49453e9306e715a3877bc44affected
LinuxLinuxddb94eafab8b597b05904c8277194ea2d6357fa9 < dcf9b3c90e5560339649d088836529883fb509f3affected
LinuxLinuxddb94eafab8b597b05904c8277194ea2d6357fa9 < 9464ca7a6e56ad1ebf48b2ad5c16871edfad10c6affected
LinuxLinuxddb94eafab8b597b05904c8277194ea2d6357fa9 < 959ea349c7e2d4edf07b6838ca7e59345fe61a08affected
LinuxLinuxddb94eafab8b597b05904c8277194ea2d6357fa9 < 50422613185d505201167e8bdd2f2700790d5db6affected
LinuxLinuxddb94eafab8b597b05904c8277194ea2d6357fa9 < a78d055ba7c31103ad02f8eceb0c452e154d2660affected
LinuxLinuxddb94eafab8b597b05904c8277194ea2d6357fa9 < 008e7a7c293b30bc43e4368dac6ea3808b75a572affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.15.202 <= 5.15.*unaffected
LinuxLinux6.1.165 <= 6.1.*unaffected
LinuxLinux6.6.128 <= 6.6.*unaffected
LinuxLinux6.12.75 <= 6.12.*unaffected
LinuxLinux6.18.14 <= 6.18.*unaffected
LinuxLinux6.19.4 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References