CVE-2026-53099 | In the Linux kernel, the following vulnerability has been re…

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Switch CONFIG_CFI_CLANG to CONFIG_CFI This was renamed in commit 23ef9d439769 ("kcfi: Rename CONFIG_CFI_CLANG to CONFIG_CFI") as it is now a compiler-agnostic option. Using the wrong name results in the code getting compiled out. Meaning the CFI failures for btf_dtor_kfunc_t would still trigger.

Metadata

CVE ID: CVE-2026-53099
State: PUBLISHED
Assigner: Linux
Reserved: 2026-06-09 07:44 UTC
Published: 2026-06-24 16:30 UTC
Last updated: 2026-06-24 16:30 UTC
Vendor / Product: Linux / Linux
Sources: cve.org · NVD

Severity & Metrics

No CVSS data available.

Affected products (2)

Vendor	Product	Platform	Versions
Linux	Linux	—	99fde4d0626176d03cea35c64a063df73816e64d < f74fce43dbc059e059b5346a670f697c0e97b1d0, 99fde4d0626176d03cea35c64a063df73816e64d < 9b0cf064ea0a6bac5e1a5fb43b004fd52fbe2b3b
Linux	Linux	—	7.0, 0 < 7.0, 7.0.10 ≤ 7.0., 7.1 ≤

References (2)