{
  "claim_outcome": "blocked",
  "claim_block_reason": "blocking_mitigation",
  "repro_result": "not_confirmed",
  "validated_surface": "local_kernel_runtime",
  "evidence_scope": "production_path",
  "claimed_impact_class": "privilege_escalation",
  "observed_impact_class": "privilege_escalation",
  "exploitability_confidence": "high",
  "attacker_controlled_input": "unprivileged local attacker with XFRM ESP-in-TCP (espintcp) + veth + vmsplice/splice zero-copy data",
  "trigger_path": "skb_try_coalesce() in TCP receive path; in-place ESP decryption over file-backed page cache",
  "end_to_end_target_reached": false,
  "sanitizer_used": false,
  "crash_observed": false,
  "read_write_primitive_observed": true,
  "exploit_chain_demonstrated": true,
  "blocking_mitigation": "CVE-2026-43503 fix plus CVE-2026-46300 skb_try_coalesce backport in v7.0.10",
  "inferred": false
}
