CVE-2026-45951

HIGH 7.8

bpf: Fix a potential use-after-free of BTF object

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free of BTF object Refcounting in the check_pseudo_btf_id() function is incorrect: the __check_pseudo_btf_id() function might get called with a zero refcounted btf. Fix this, and patch related code accordingly. v3: rephrase a comment (AI) v2: fix a refcount leak introduced in v1 (AI)

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 27, 2026
Last Updated	May 30, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

76145f7255326761dafb76721a785799d8a00d5f < eac65c272f3b49021a843cba5107d63627395e0e 76145f7255326761dafb76721a785799d8a00d5f < 9ff46ffeecdb1802d6e26183177935b948a12e7f 76145f7255326761dafb76721a785799d8a00d5f < ccd2d799ed4467c07f5ee18c2f5c59bcc990822c

Linux / Linux

6.14

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/eac65c272f3b49021a843cba5107d63627395e0e git.kernel.org: https://git.kernel.org/stable/c/9ff46ffeecdb1802d6e26183177935b948a12e7f git.kernel.org: https://git.kernel.org/stable/c/ccd2d799ed4467c07f5ee18c2f5c59bcc990822c