CVE-2026-45951
published 2026-05-27CVE-2026-45951: In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free of BTF object Refcounting in the check_pseudo_btf_id()…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix a potential use-after-free of BTF object
Refcounting in the check_pseudo_btf_id() function is incorrect:
the __check_pseudo_btf_id() function might get called with a zero
refcounted btf. Fix this, and patch related code accordingly.
v3: rephrase a comment (AI)
v2: fix a refcount leak introduced in v1 (AI)
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= 76145f7255326761dafb76721a785799d8a00d5f < eac65c272f3b49021a843cba5107d63627395e0e | eac65c272f3b49021a843cba5107d63627395e0e |
| linux | linux | >= 76145f7255326761dafb76721a785799d8a00d5f < 9ff46ffeecdb1802d6e26183177935b948a12e7f | 9ff46ffeecdb1802d6e26183177935b948a12e7f |
| linux | linux | >= 76145f7255326761dafb76721a785799d8a00d5f < ccd2d799ed4467c07f5ee18c2f5c59bcc990822c | ccd2d799ed4467c07f5ee18c2f5c59bcc990822c |
| linux | linux_kernel | — | — |