SUSE CVE-2026-45839

In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpfcoreparsespec CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field, e.g. "0:1:2" walks through nested struct members...

UBUNTU-CVE-2026-45839

In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpfcoreparsespec CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field, e.g. "0:1:2" walks through nested struct members...

EUVD-2026-32165

In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpfcoreparsespec CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field, e.g. "0:1:2" walks through nested struct members...

CVE-2026-45839

CVE-2026-45839 affects the Linux kernel BPF Core Relocation (CO-RE) parsing. Negative CO-RE accessor indices parsed by bpf_core_parse_spec() were not rejected, allowing an out-of-bounds read when -1 reaches btf_member_bit_offset(). This can crash the kernel during BPF_PROG_LOAD on systems with CO...

Linux kernel 安全漏洞

The Linux kernel is the core used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. This vulnerability stems from the use of sscanf to parse the CO-RE accessor index in bpfcoreparsespec. When negative value...

Linux Distros Unpatched Vulnerability : CVE-2026-45839

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: reject negative CO-RE accessor indices in bpfcoreparsespec CO-RE accessor strings are colon- separated indices that describe a path from a root BTF type to...

PT-2026-43673

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel where the bpf core parse spec function fails to reject negative CO-RE Compile Once - Run Everywhere accessor indices. CO-RE accessor strings use...

SUSE CVE-2025-37939

In the Linux kernel, the following vulnerability has been resolved: libbpf: Fix accessing BTF.ext corerelo header Update btfextparseinfo to ensure the corerelo header is present before reading its fields. This avoids a potential buffer read overflow reported by the OSS Fuzz project...

CVE-2025-37939 libbpf: Fix accessing BTF.ext core_relo header

In the Linux kernel, the following vulnerability has been resolved: libbpf: Fix accessing BTF.ext corerelo header Update btfextparseinfo to ensure the corerelo header is present before reading its fields. This avoids a potential buffer read overflow reported by the OSS Fuzz project...

DEBIAN-CVE-2024-49850

In the Linux kernel, the following vulnerability has been resolved: bpf: correctly handle malformed BPFCORETYPEIDLOCAL relos In case of malformed relocation record of kind BPFCORETYPEIDLOCAL referencing a non-existing BTF type, function bpfcorecalcreloinsn would cause a null pointer deference. Fi...