{"id":"CVE-2026-43030","summary":"bpf: Fix regsafe() for pointers to packet","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix regsafe() for pointers to packet\n\nIn case rold-\u003ereg-\u003erange == BEYOND_PKT_END && rcur-\u003ereg-\u003erange == N\nregsafe() may return true which may lead to current state with\nvalid packet range not being explored. Fix the bug.","modified":"2026-07-09T18:29:21.993000052Z","published":"2026-05-01T14:15:30.564Z","related":["SUSE-SU-2026:22099-1","SUSE-SU-2026:22108-1","SUSE-SU-2026:22112-1","SUSE-SU-2026:22117-1","SUSE-SU-2026:22127-1","SUSE-SU-2026:22137-1","SUSE-SU-2026:22433-1","SUSE-SU-2026:22458-1","SUSE-SU-2026:2482-1","SUSE-SU-2026:2591-1","openSUSE-SU-2026:20965-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43030.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/015a74476dc1ab6923d89f1ee009aaf43faa7185"},{"type":"WEB","url":"https://git.kernel.org/stable/c/37db6b9726d0bcf91cbdf9d63b558c50da49f968"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7241da033fdc507b920e092dab1f97b945cb0370"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8aebe18069394f4a79d2d82080a0f806da449996"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a8502a79e832b861e99218cbd2d8f4312d62e225"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b52f6d0ef7b308f9d05bbddb78749852f28e8e40"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b99d82706bd1511bb875e3de7154698fd9215c99"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ca995b1462ec6db1e869100ba1fb7356bd3f22f0"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43030.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-43030"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"95b6ec733752b31bfd166c4609d2c1b5cdde9b47"},{"fixed":"b52f6d0ef7b308f9d05bbddb78749852f28e8e40"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"6d94e741a8ff818e5518da8257f5ca0aaed1f269"},{"fixed":"37db6b9726d0bcf91cbdf9d63b558c50da49f968"},{"fixed":"015a74476dc1ab6923d89f1ee009aaf43faa7185"},{"fixed":"b99d82706bd1511bb875e3de7154698fd9215c99"},{"fixed":"7241da033fdc507b920e092dab1f97b945cb0370"},{"fixed":"8aebe18069394f4a79d2d82080a0f806da449996"},{"fixed":"ca995b1462ec6db1e869100ba1fb7356bd3f22f0"},{"fixed":"a8502a79e832b861e99218cbd2d8f4312d62e225"}]}],"versions":["v5.10.252","v5.10.251","v5.10.250","v5.10.249","v5.10.248","v5.10.247","v5.10.246","v5.10.245","v5.10.244","v5.10.243","v5.10.242","v5.10.241","v5.10.240","v5.10.239","v5.10.238","v5.10.237","v5.10.236","v5.10.235","v5.10.234","v5.10.233","v5.10.232","v5.10.231","v5.10.230","v5.10.229","v5.10.228","v5.10.227","v5.10.226","v5.10.225","v5.10.224","v5.10.223","v5.10.222","v5.10.221","v5.10.220","v5.10.219","v5.10.218","v5.10.217","v5.10.216","v5.10.215","v5.10.214","v5.10.213","v5.10.212","v5.10.211","v5.10.210","v5.10.209","v5.10.208","v5.10.207","v5.10.206","v5.10.205","v5.10.204","v5.10.203","v5.10.202","v5.10.201","v5.10.200","v5.10.199","v5.10.198","v5.10.197","v5.10.196","v5.10.195","v5.10.194","v5.10.193","v5.10.192","v5.10.191","v5.10.190","v5.10.189","v5.10.188","v5.10.187","v5.10.186","v5.10.185","v5.10.184","v5.10.183","v5.10.182","v5.10.181","v5.10.180","v5.10.179","v5.10.178","v5.10.177","v5.10.176","v5.10.175","v5.10.174","v5.10.173","v5.10.172","v5.10.171","v5.10.170","v5.10.169","v5.10.168","v5.10.167","v5.10.166","v5.10.165","v5.10.164","v5.10.163","v5.10.162","v5.10.161","v5.10.160","v5.10.159","v5.10.158","v5.10.157","v5.10.156","v5.10.155"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43030.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.10.253"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.203"},{"fixed":"6.1.168"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.6.134"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.12.81"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.18.22"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.19.12"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43030.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}