PT-2026-51926 · Linux · Linux
Published
2026-06-24
·
Updated
2026-06-24
·
CVE-2026-53032
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix NULL deref in map kptr match type for scalar regs
Commit ab6c637ad027 ("bpf: Fix a bpf kptr xchg() issue with local
kptr") refactored map kptr match type() to branch on btf is kernel()
before checking base type(). A scalar register stored into a kptr
slot has no btf, so the btf is kernel(reg->btf) call dereferences
NULL.
Move the base type() != PTR TO BTF ID guard before any reg->btf
access.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux