CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-45967

In the Linux kernel, the following vulnerability has been resolved: bpf: Return proper address for non-zero offsets in insn array The map_direct_value_addr() function of the instruction array map incorrectly adds offset to the resulting address. This is a bug, because later the resolve_pseudo_ldimm64() function adds the offset. Fix it. Corresponding selftests are added in a consequent commit.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 1.4%

CVSS Severity

CVSS v3 Score 5.5

References

https://git.kernel.org/stable/c/73ef43202a37d779a8e665a0acae214fa59df9fb
https://git.kernel.org/stable/c/e3bd7bdf5ffe49d8381e42843f6e98cd0c78a1e8

Products affected by CVE-2026-45967

Linux » Linux Kernel » Version: 6.19

cpe:2.3:o:linux:linux_kernel:6.19
Linux » Linux Kernel » Version: 6.19.1

cpe:2.3:o:linux:linux_kernel:6.19.1
Linux » Linux Kernel » Version: 6.19.3

cpe:2.3:o:linux:linux_kernel:6.19.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-45967

Products

Pricing

Contact Us