-

CVE-2026-53074

bpf: reject short IPv4/IPv6 inputs in bpf_prog_test_run_skb

In the Linux kernel, the following vulnerability has been resolved:

bpf: reject short IPv4/IPv6 inputs in bpf_prog_test_run_skb

bpf_prog_test_run_skb() calls eth_type_trans() first and then uses
skb->protocol to initialize sk family and address fields for the test
run.

For IPv4 and IPv6 packets, it may access ip_hdr(skb) or ipv6_hdr(skb)
even when the provided test input only contains an Ethernet header.

Reject the input earlier if the Ethernet frame carries IPv4/IPv6
EtherType but the L3 header is too short.

Fold the IPv4/IPv6 header length checks into the existing protocol
switch and return -EINVAL before accessing the network headers.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < 7254267799d083280c0e53effc101a33add95f7b
Status affected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < 6a9f38d5ff11e00bc54baab752642978805e81eb
Status affected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < e6aa481f21fc7a41ed344767ea25aae9d03fae71
Status affected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < 0a04db240effd85773f66244645a28cedddb72d2
Status affected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < 1f882c492d46f90bdb36f4936876c88c28dab21c
Status affected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < 8042240412de3222d27b31e89d29336961cad9e4
Status affected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < 6def5fe753cbe5b279ee5fd10327b2611cbddaca
Status affected
Version fa5cb548ced61b9d3095f32f8a7e427a248c65ee
Version < 12bec2bd4b76d81c5d3996bd14ec1b7f4d983747
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 5.9
Status affected
Version 0
Version < 5.9
Status unaffected
Version <= 5.10.*
Version 5.10.258
Status unaffected
Version <= 5.15.*
Version 5.15.209
Status unaffected
Version <= 6.1.*
Version 6.1.175
Status unaffected
Version <= 6.6.*
Version 6.6.141
Status unaffected
Version <= 6.12.*
Version 6.12.91
Status unaffected
Version <= 6.18.*
Version 6.18.33
Status unaffected
Version <= 7.0.*
Version 7.0.10
Status unaffected
Version <= *
Version 7.1
Status unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.16% 0.06
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/7254267799d083280c0e53effc101a33add95f7b
https://git.kernel.org/stable/c/6a9f38d5ff11e00bc54baab752642978805e81eb
https://git.kernel.org/stable/c/e6aa481f21fc7a41ed344767ea25aae9d03fae71
https://git.kernel.org/stable/c/0a04db240effd85773f66244645a28cedddb72d2
https://git.kernel.org/stable/c/1f882c492d46f90bdb36f4936876c88c28dab21c
https://git.kernel.org/stable/c/8042240412de3222d27b31e89d29336961cad9e4
https://git.kernel.org/stable/c/6def5fe753cbe5b279ee5fd10327b2611cbddaca
https://git.kernel.org/stable/c/12bec2bd4b76d81c5d3996bd14ec1b7f4d983747