CVE-2026-46132 | Linux Kernel up to 7.1-rc2 net rtnl_fill_vfinfo broadcast[] stack-based overflow

May 28, 2026 Yanac

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.6.139/6.12.87/6.18.29/7.0.6/7.1-rc2. The affected element is the function rtnl_fill_vfinfo of the component net. Executing a manipulation of the argument broadcast[] can lead to stack-based buffer overflow.

The identification of this vulnerability is CVE-2026-46132. The attack needs to be done within the local network. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More