-

CVE-2026-53032

bpf: Fix NULL deref in map_kptr_match_type for scalar regs

In the Linux kernel, the following vulnerability has been resolved:

bpf: Fix NULL deref in map_kptr_match_type for scalar regs

Commit ab6c637ad027 ("bpf: Fix a bpf_kptr_xchg() issue with local
kptr") refactored map_kptr_match_type() to branch on btf_is_kernel()
before checking base_type(). A scalar register stored into a kptr
slot has no btf, so the btf_is_kernel(reg->btf) call dereferences
NULL.

Move the base_type() != PTR_TO_BTF_ID guard before any reg->btf
access.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version ab6c637ad0276e42f8acabcbc64932a6d346dab3
Version < 520454e839710c327808c2fcc98e28cee77355fc
Status affected
Version ab6c637ad0276e42f8acabcbc64932a6d346dab3
Version < 0a36c1f72888bca0237295a4da19cd91821a90be
Status affected
Version ab6c637ad0276e42f8acabcbc64932a6d346dab3
Version < 6982653ce5f119982aa58f1af58e7bfbebf39252
Status affected
Version ab6c637ad0276e42f8acabcbc64932a6d346dab3
Version < da1d615ce49a47986a8864e2371a26e97861085c
Status affected
Version ab6c637ad0276e42f8acabcbc64932a6d346dab3
Version < 4d0a375887ab4d49e4da1ff10f9606cab8f7c3ad
Status affected
Version af3d2e0f3a54e67806959d161e613457772babc5
Status affected
Version 4782968e0d631b0d8944dcfd4bf8fb49be087101
Status affected
Version 6.4.16
Version < 6.5
Status affected
Version 6.5.3
Version < 6.6
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 6.6
Status affected
Version 0
Version < 6.6
Status unaffected
Version <= 6.6.*
Version 6.6.141
Status unaffected
Version <= 6.12.*
Version 6.12.91
Status unaffected
Version <= 6.18.*
Version 6.18.33
Status unaffected
Version <= 7.0.*
Version 7.0.10
Status unaffected
Version <= *
Version 7.1
Status unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.17% 0.063
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/520454e839710c327808c2fcc98e28cee77355fc
https://git.kernel.org/stable/c/0a36c1f72888bca0237295a4da19cd91821a90be
https://git.kernel.org/stable/c/6982653ce5f119982aa58f1af58e7bfbebf39252
https://git.kernel.org/stable/c/da1d615ce49a47986a8864e2371a26e97861085c
https://git.kernel.org/stable/c/4d0a375887ab4d49e4da1ff10f9606cab8f7c3ad