A vulnerability classified as critical was found in Linux Kernel up to 6.18.33/7.0.10 . Affected by this issue is the function tap_ioctl of the component tap . Executing a manipulation of the argument addr_len can lead to stack-based buffer overflow. This vulnerability appears as CVE-2026-52937 . The attacker needs to be present on the local network. There is no available exploit. Upgrading the affected component is advised.