What is GHSA-3538-rrcv-8mrq?

GHSA-3538-rrcv-8mrq is a security advisory published by GitHub Security Advisories with unknown severity. In the Linux kernel, the following vulnerability has been resolved: net: remove WARN_ON_ONCE...

Which CVE IDs does GHSA-3538-rrcv-8mrq cover?

GHSA-3538-rrcv-8mrq covers the following CVE IDs: CVE-2026-45847. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

GHSA-3538-rrcv-8mrqunknown

In the Linux kernel, the following vulnerability has been resolved: net: remove WARN_ON_ONCE...

Vendor

GitHub Security Advisories

Published

May 27, 2026

Last Modified

May 27, 2026

🔗 CVE IDs covered (1)

CVE-2026-45847 →

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

net: remove WARN_ON_ONCE when accessing forward path array

Although unlikely, recent support for IPIP tunnels increases chances of reaching this WARN_ON_ONCE if userspace manages to build a sufficiently long forward path.

Remove it.

🔗 References (9)

https://nvd.nist.gov/vuln/detail/CVE-2026-45847
https://git.kernel.org/stable/c/008e7a7c293b30bc43e4368dac6ea3808b75a572
https://git.kernel.org/stable/c/50422613185d505201167e8bdd2f2700790d5db6
https://git.kernel.org/stable/c/548244c2f542aa0ad49453e9306e715a3877bc44
https://git.kernel.org/stable/c/9464ca7a6e56ad1ebf48b2ad5c16871edfad10c6
https://git.kernel.org/stable/c/959ea349c7e2d4edf07b6838ca7e59345fe61a08
https://git.kernel.org/stable/c/a78d055ba7c31103ad02f8eceb0c452e154d2660
https://git.kernel.org/stable/c/dcf9b3c90e5560339649d088836529883fb509f3
https://github.com/advisories/GHSA-3538-rrcv-8mrq