CVE-2026-45932

HIGH 7.3

bpf: Fix tcx/netkit detach permissions when prog fd isn't given

CVSS Score

7.3

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix tcx/netkit detach permissions when prog fd isn't given This commit fixes a security issue where BPF_PROG_DETACH on tcx or netkit devices could be executed by any user when no program fd was provided, bypassing permission checks. The fix adds a capability check for CAP_NET_ADMIN or CAP_SYS_ADMIN in this case.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 27, 2026
Last Updated	May 30, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

e420bed025071a623d2720a92bc2245c84757ecb < 4e0772cded109c238411f2fac36ac39302758b81 e420bed025071a623d2720a92bc2245c84757ecb < 3f04cc1e5374da4c5e791ae010a06cfea7bacbe6 e420bed025071a623d2720a92bc2245c84757ecb < ae23bc81ddf7c17b663c4ed1b21e35527b0a7131

Linux / Linux

6.6

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/4e0772cded109c238411f2fac36ac39302758b81 git.kernel.org: https://git.kernel.org/stable/c/3f04cc1e5374da4c5e791ae010a06cfea7bacbe6 git.kernel.org: https://git.kernel.org/stable/c/ae23bc81ddf7c17b663c4ed1b21e35527b0a7131