CVE-2026-45847 PUBLISHED

net: remove WARN_ON_ONCE when accessing forward path array

Assigner: Linux
Reserved: 13.05.2026 Published: 27.05.2026 Updated: 27.05.2026

In the Linux kernel, the following vulnerability has been resolved:

net: remove WARN_ON_ONCE when accessing forward path array

Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARN_ON_ONCE if userspace manages to build a sufficiently long forward path.

Remove it.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from ddb94eafab8b597b05904c8277194ea2d6357fa9 to 548244c2f542aa0ad49453e9306e715a3877bc44 (excl.) affected from ddb94eafab8b597b05904c8277194ea2d6357fa9 to dcf9b3c90e5560339649d088836529883fb509f3 (excl.) affected from ddb94eafab8b597b05904c8277194ea2d6357fa9 to 9464ca7a6e56ad1ebf48b2ad5c16871edfad10c6 (excl.) affected from ddb94eafab8b597b05904c8277194ea2d6357fa9 to 959ea349c7e2d4edf07b6838ca7e59345fe61a08 (excl.) affected from ddb94eafab8b597b05904c8277194ea2d6357fa9 to 50422613185d505201167e8bdd2f2700790d5db6 (excl.) affected from ddb94eafab8b597b05904c8277194ea2d6357fa9 to a78d055ba7c31103ad02f8eceb0c452e154d2660 (excl.) affected from ddb94eafab8b597b05904c8277194ea2d6357fa9 to 008e7a7c293b30bc43e4368dac6ea3808b75a572 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 5.13 is affected unaffected from 0 to 5.13 (excl.) unaffected from 5.15.202 to 5.15.* (incl.) unaffected from 6.1.165 to 6.1.* (incl.) unaffected from 6.6.128 to 6.6.* (incl.) unaffected from 6.12.75 to 6.12.* (incl.) unaffected from 6.18.14 to 6.18.* (incl.) unaffected from 6.19.4 to 6.19.* (incl.) unaffected from 7.0 to * (incl.)

CVE-2026-45847 PUBLISHED

net: remove WARN_ON_ONCE when accessing forward path array

Product Status

References