CVE-2026-45951

HIGH

Linux - Use After Free

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free of BTF object Refcounting in the check_pseudo_btf_id() function is incorrect: the __check_pseudo_btf_id() function might get called with a zero refcounted btf. Fix this, and patch related code accordingly. v3: rephrase a comment (AI) v2: fix a refcount leak introduced in v1 (AI)

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/eac65c272f3b49021a843cba5107d63627395e0e

https://git.kernel.org/stable/c/9ff46ffeecdb1802d6e26183177935b948a12e7f

https://git.kernel.org/stable/c/ccd2d799ed4467c07f5ee18c2f5c59bcc990822c

Scores

CVSS v3 7.8

EPSS 0.0012

EPSS Percentile 2.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (9)

Linux/Linux < 6.14

Linux/Linux 6.14

Linux/Linux 6.18.14 - 6.18.*

Linux/Linux 6.19.4 - 6.19.*

Linux/Linux 7.0

Linux/Linux 76145f7255326761dafb76721a785799d8a00d5f - 9ff46ffeecdb1802d6e26183177935b948a12e7f

Linux/Linux 76145f7255326761dafb76721a785799d8a00d5f - ccd2d799ed4467c07f5ee18c2f5c59bcc990822c

Linux/Linux 76145f7255326761dafb76721a785799d8a00d5f - eac65c272f3b49021a843cba5107d63627395e0e

linux/linux_kernel 6.14 - 6.18.14

Published May 27, 2026

Tracked Since May 27, 2026