Linux Kernel Vulnerability in SLIP Protocol by Vendor
CVE-2026-45842

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-45842?

A vulnerability exists in the Linux kernel's SLIP (Serial Line Internet Protocol) implementation that can lead to a null pointer dereference and kernel crash. This issue arises when the receive state is improperly configured, especially when the allocation loop in the initialization function is skipped, resulting in a null receive state. Any inbound VJ-compressed or uncompressed frames that select the invalid slot can cause a general protection fault within the kernel, rendering it unstable. This vulnerability can be exploited by users with unprivileged access to the network namespace, potentially leading to denial of service conditions.

Affected Version(s)

Linux 4ab42d78e37a294ac7bc56901d563c642e03c4ae

Linux 4ab42d78e37a294ac7bc56901d563c642e03c4ae < 9e1ff0eead073c4f46d874ad2526b7dda5465faf

References

https://git.kernel.org/stable/c/c6980e8b1a86288167f34966f...

https://git.kernel.org/stable/c/de42f86e2cf5028a97e74c258...

https://git.kernel.org/stable/c/9e1ff0eead073c4f46d874ad2...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-45842 Data

JSON