PT-2026-32152 · Linux · Linux Kernel
CVE-2026-31413
·
Published
2026-04-12
·
Updated
2026-07-03
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The Linux kernel contains a flaw in the BPF verifier related to unsound scalar forking in the
maybe fork scalars() function when handling BPF OR operations. Specifically, the function incorrectly forks the verifier state, leading to a divergence between the verifier and runtime values. This divergence can result in out-of-bounds map access.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Stack Overflow
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Kernel