CVE-2026-45971
published 2026-05-27CVE-2026-45971: In the Linux kernel, the following vulnerability has been resolved: bpf: Limit bpf program signature size Practical BPF signatures are significantly smaller…
medium5.5
In the Linux kernel, the following vulnerability has been resolved:
bpf: Limit bpf program signature size
Practical BPF signatures are significantly smaller than
KMALLOC_MAX_CACHE_SIZE
Allowing larger sizes opens the door for abuse by passing excessive
size values and forcing the kernel into expensive allocation paths (via
kmalloc_large or vmalloc).
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= 349271568303695f0ac3563af153d2b4542f6986 < 5835a077c6f5c565d525eaca9fac01572b97a9b9 | 5835a077c6f5c565d525eaca9fac01572b97a9b9 |
| linux | linux | >= 349271568303695f0ac3563af153d2b4542f6986 < eb8166c79097996396468a341de258a798789d36 | eb8166c79097996396468a341de258a798789d36 |
| linux | linux | >= 349271568303695f0ac3563af153d2b4542f6986 < ea1535e28bb3773fc0b3cbd1f3842b808016990c | ea1535e28bb3773fc0b3cbd1f3842b808016990c |
| linux | linux_kernel | — | — |