CVE-2026-43066

MEDIUM EPSS 1.9%
Published May 5, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 5, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths During code review, Joseph found that ext4_fc_replay_inode() calls ext4_get_fc_inode_loc() to get the inode location, which holds a reference to iloc.bh that must be released via brelse(). However, several error paths jump to the 'out' label without releasing iloc.bh: - ext4_handle_dirty_metadata() failure - sync_dirty_buffer() failure - ext4_mark_inode_used() failure - ext4_iget() failure Fix this by introducing an 'out_brelse' label placed just before the existing 'out' label to ensure iloc.bh is always released. Additionally, make ext4_fc_replay_inode() propagate errors properly instead of always returning 0.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
1.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥5.10  –  <5.10.253
linuxlinux_kernel*≥5.11  –  <5.15.203
linuxlinux_kernel*≥5.16  –  <6.1.168
linuxlinux_kernel*≥6.2  –  <6.6.131
linuxlinux_kernel*≥6.7  –  <6.12.80
linuxlinux_kernel*≥6.13  –  <6.18.21
linuxlinux_kernel*≥6.19  –  <6.19.11
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/0892f12cd49fde5d5db68137923db107f894f3a3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/19782b4c793b49a6aa4abbb307ddff3610009d21
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5a63033696e60b5d70816f1d119645ac5b0b0a03
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9c90449a9ac2cd1ba540ad2561b8b70c1bfb0a25
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c426231e3d51916e83b6d1ab7ed8a65e83bca5b4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca99cbcc316cdfd2040cc2b13d1426ccb3b3b50b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec0a7500d8eace5b4f305fa0c594dd148f0e8d29
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f7817ad399d604e8639005d87d148b5ec626ad26
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0892f12cd49fde5d5db68137923db107f894f3a3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/19782b4c793b49a6aa4abbb307ddff3610009d21
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5a63033696e60b5d70816f1d119645ac5b0b0a03
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9c90449a9ac2cd1ba540ad2561b8b70c1bfb0a25
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c426231e3d51916e83b6d1ab7ed8a65e83bca5b4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca99cbcc316cdfd2040cc2b13d1426ccb3b3b50b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec0a7500d8eace5b4f305fa0c594dd148f0e8d29
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f7817ad399d604e8639005d87d148b5ec626ad26
    Patch