A vulnerability, which was classified as critical , was found in Linux Kernel up to 6.18.35/7.0.12 . This vulnerability affects the function tun_put_user of the component tun . The manipulation results in stack-based buffer overflow. This vulnerability is known as CVE-2026-52940 . Access to the local network is required for this attack. No exploit is available. You should upgrade the affected component.