Main Vulnerability Database SB2026050992

SB2026050992 - Type Confusion in Linux kernel bpf

Published: May 9, 2026

Security Bulletin ID SB2026050992

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Type Confusion (CVE-ID: CVE-2026-43306)

The vulnerability allows a local user to cause a denial of service.

The vulnerability exists due to improper function type handling in the BPF crypto destructor kfunc registration when invoking the destructor through an indirect function call with CONFIG_CFI enabled. A local user can trigger BPF operations that free crypto context fields to cause a denial of service.

Exploitation requires CONFIG_CFI to be enabled.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/3979a550fe06b370d73647f59cf462fa525c9ec4
https://git.kernel.org/stable/c/4e3e57dbf46dad3498f8c4219ce2dba756875962
https://git.kernel.org/stable/c/50d6fd69388cc7b05dce72f09080674dcede4ac9
https://git.kernel.org/stable/c/b40a5d724f29fc2eed23ff353808a9aae616b48a