Linux Kernel: Netfilter Vulnerability in Bitwise Operations
CVE-2026-46101

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-46101?

A vulnerability within the Linux kernel's netfilter framework allows for the acceptance of malformed left and right shift expressions during initialization, specifically when zero shift operands are utilized. This misconfiguration could lead to undefined behavior and potential exploitation within the control plane. The implementation is designed to reject zero shift operands, ensuring that only valid expressions are processed, thereby preventing malformed rules from reaching the packet path. This fix enhances the security posture of systems relying on the Linux kernel.

Affected Version(s)

Linux 567d746b55bc66d3800c9ae91d50f0c5deb2fd93

Linux 567d746b55bc66d3800c9ae91d50f0c5deb2fd93 < 6f820139d16a4c9865a145d4a9cf9c92cc632c14

References

https://git.kernel.org/stable/c/bffef0acec9c3b837a785248a...

https://git.kernel.org/stable/c/ca24f1243ad1a4d12d6a23876...

https://git.kernel.org/stable/c/6f820139d16a4c9865a145d4a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46101 Data

JSON