CVE-2026-45971

Summary

In the Linux kernel, the following vulnerability has been resolved:

bpf: Limit bpf program signature size

Practical BPF signatures are significantly smaller than KMALLOC_MAX_CACHE_SIZE

Allowing larger sizes opens the door for abuse by passing excessive size values and forcing the kernel into expensive allocation paths (via kmalloc_large or vmalloc).

Affected Software

VendorProductVersion RangeStatus
LinuxLinux349271568303695f0ac3563af153d2b4542f6986 < 5835a077c6f5c565d525eaca9fac01572b97a9b9affected
LinuxLinux349271568303695f0ac3563af153d2b4542f6986 < eb8166c79097996396468a341de258a798789d36affected
LinuxLinux349271568303695f0ac3563af153d2b4542f6986 < ea1535e28bb3773fc0b3cbd1f3842b808016990caffected
LinuxLinux6.18affected
LinuxLinux0 < 6.18unaffected
LinuxLinux6.18.14 <= 6.18.*unaffected
LinuxLinux6.19.4 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References