CVE-2026-45967

Published: Mag 27, 2026 Last Modified: Mag 27, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

In the Linux kernel, the following vulnerability has been resolved:

bpf: Return proper address for non-zero offsets in insn array

The map_direct_value_addr() function of the instruction
array map incorrectly adds offset to the resulting address.
This is a bug, because later the resolve_pseudo_ldimm64()
function adds the offset. Fix it. Corresponding selftests
are added in a consequent commit.

https://git.kernel.org/stable/c/73ef43202a37d779a8e665a0aca…

https://git.kernel.org/stable/c/73ef43202a37d779a8e665a0acae214fa59df9fb

https://git.kernel.org/stable/c/e3bd7bdf5ffe49d8381e42843f6…

https://git.kernel.org/stable/c/e3bd7bdf5ffe49d8381e42843f6e98cd0c78a1e8

CVE-2026-45967

Description

Iscriviti alla newsletter