CVE-2026-45847
unknown
CVSS v3
โ
CVSS v4 NEW
โ
VIR risk
โ
Description
In the Linux kernel, the following vulnerability has been resolved: net: remove WARN_ON_ONCE when accessing forward path array Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARN_ON_ONCE if userspace manages to build a sufficiently long forward path. Remove it.
Predictions
Exploit likelihood
20%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 6.1.170-1 |
| debian | bullseye | fixed | 0 |
| debian | forky | fixed | 6.18.14-1 |
| debian | sid | fixed | 6.18.14-1 |
| debian | trixie | fixed | 6.12.85-1 |
| sles | affected | |
References
- https://git.kernel.org/stable/c/548244c2f542aa0ad49453e9306e715a3877bc44
- https://git.kernel.org/stable/c/dcf9b3c90e5560339649d088836529883fb509f3
- https://git.kernel.org/stable/c/9464ca7a6e56ad1ebf48b2ad5c16871edfad10c6
- https://git.kernel.org/stable/c/959ea349c7e2d4edf07b6838ca7e59345fe61a08
- https://git.kernel.org/stable/c/50422613185d505201167e8bdd2f2700790d5db6
- https://git.kernel.org/stable/c/a78d055ba7c31103ad02f8eceb0c452e154d2660
- https://git.kernel.org/stable/c/008e7a7c293b30bc43e4368dac6ea3808b75a572
- https://security-tracker.debian.org/tracker/CVE-2026-45847
- https://www.suse.com/security/cve/CVE-2026-45847.html
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.