CVE-2026-45932
published 2026-05-27CVE-2026-45932: In the Linux kernel, the following vulnerability has been resolved: bpf: Fix tcx/netkit detach permissions when prog fd isn't given This commit fixes a…
high7.3CVSS 3.1
AVLACLPRLUINSUCLIHAH
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix tcx/netkit detach permissions when prog fd isn't given
This commit fixes a security issue where BPF_PROG_DETACH on tcx or
netkit devices could be executed by any user when no program fd was
provided, bypassing permission checks. The fix adds a capability
check for CAP_NET_ADMIN or CAP_SYS_ADMIN in this case.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= e420bed025071a623d2720a92bc2245c84757ecb < 4e0772cded109c238411f2fac36ac39302758b81 | 4e0772cded109c238411f2fac36ac39302758b81 |
| linux | linux | >= e420bed025071a623d2720a92bc2245c84757ecb < 3f04cc1e5374da4c5e791ae010a06cfea7bacbe6 | 3f04cc1e5374da4c5e791ae010a06cfea7bacbe6 |
| linux | linux | >= e420bed025071a623d2720a92bc2245c84757ecb < ae23bc81ddf7c17b663c4ed1b21e35527b0a7131 | ae23bc81ddf7c17b663c4ed1b21e35527b0a7131 |
| linux | linux_kernel | — | — |