wid-sec-w-2026-0790 · Published 2026-03-18 · View on BSI CERT-Bund ↗

Linux Kernel: Multiple Vulnerabilities

CVSS 7.8 HIGH

Risk Summary

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPF_PROBE_MEM* instructions. When a BPF program performs memory access operations, the instructions it executes may trigger ADEM exceptions. The kernel’s built-in BPF exception table mechanism (EX_TYPE_BPF) will generate corresponding exception fixup entries in the JIT compilation phase; however, the architecture-specific trap handling function needs to proactively call the common fixup routine to achieve exception recovery. do_ade(): fix EX_TYPE_BPF memory access exceptions for BPF programs, ensure safe execution. Relevant test cases: illegal address access tests in module_attach and subprogs_extable of selftests/bpf.

CVEs (25)

CVE-2025-71268 CVE-2025-71269 CVE-2025-71270 CVE-2026-23249 CVE-2026-23250 CVE-2026-23251 CVE-2026-23252 CVE-2026-23253 CVE-2026-23254 CVE-2026-23255 CVE-2026-23256 CVE-2026-23257 CVE-2026-23258 CVE-2026-23259 CVE-2026-23260 CVE-2026-23261 CVE-2026-23262 CVE-2026-23263 CVE-2026-23264 CVE-2026-23265 CVE-2026-23266 CVE-2026-23267 CVE-2026-23268 CVE-2026-23269 CVE-2026-23270

Affected Vendors

Google IGEL Open Source SUSE Ubuntu WatchGuard

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more