BPF JIT Buffer Misalignment in Linux Kernel Affects Arm64 Architecture
CVE-2026-23383

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
25 March 2026

What is CVE-2026-23383?

A vulnerability exists in the Linux kernel's BPF JIT allocator, which fails to properly align the JIT buffer to 8 bytes. This misalignment can lead to serious issues such as misaligned-access warnings reported by UBSAN and risk of torn reads during concurrent updates to the target field in a structure. Specifically, the misalignment allows 64-bit loads/stores to potentially access corrupted addresses on arm64 systems due to atomicity guarantees being violated. The issue has been resolved by increasing the allocation alignment requirement to 8 bytes, ensuring the JIT buffer's base address is properly anchored.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux b2ad54e1533e91449cb2a371e034942bd7882b58 < 80ad264da02cc4aee718e799c2b79f0f834673dc

Linux b2ad54e1533e91449cb2a371e034942bd7882b58 < 519b1ad91de5bf7a496f2b858e9212db6328e1de

Linux b2ad54e1533e91449cb2a371e034942bd7882b58 < 66959ed481a474eaae278c7f6860a2a9b188a4d6

References

https://git.kernel.org/stable/c/80ad264da02cc4aee718e799c...
https://git.kernel.org/stable/c/519b1ad91de5bf7a496f2b858...
https://git.kernel.org/stable/c/66959ed481a474eaae278c7f6...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.