Buffer Over-read Vulnerability in Linux Kernel Affecting Packet Processing
CVE-2026-45843

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-45843?

A vulnerability in the Linux kernel allows for a buffer over-read during packet processing. Specifically, the functions slip and slhc_uncompress can read beyond the end of a compressed TCP packet, which may lead to exposing sensitive data or crashing applications. To address this issue, bounds checks have been implemented to ensure that the reading of packet data does not exceed the intended limits. This vulnerability may allow unauthenticated attackers to exploit this weakness, highlighting the importance of updating to the latest kernel version.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 37537e42e6df387398bee85cb85070cc80bb1e10

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 4cefe32639933d652614b0bd50f818f9af4af78f

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0511ecb00e61bf28e2fec4bb41fcce385c3a3b2d

References

https://git.kernel.org/stable/c/37537e42e6df387398bee85cb...

https://git.kernel.org/stable/c/4cefe32639933d652614b0bd5...

https://git.kernel.org/stable/c/0511ecb00e61bf28e2fec4bb4...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-45843 Data

JSON