CVE-2026-45951
HighCVSS 7.8Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
A vulnerability has been identified in the Linux kernel related to a potential use-after-free of BTF objects. The issue involves incorrect refcounting in the check_pseudo_btf_id() function, which may lead to calling __check_pseudo_btf_id() with a zero refcount.
Risk Assessment
This vulnerability could lead to unpredictable system behavior, posing a risk of crashes or privilege escalation. Organizations should be aware of the potential security threats associated with their systems.
Recommendation
It is recommended to update the Linux kernel to the latest version to mitigate this vulnerability and ensure proper refcount management.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free of BTF object Refcounting in the check_pseudo_btf_id() function is incorrect: the __check_pseudo_btf_id() function might get called with a zero refcounted btf. Fix this, and patch related code accordingly. v3: rephrase a comment (AI) v2: fix a refcount leak introduced in v1 (AI)

