CVE-2026-43074

HIGH EPSS 2.9%
Published May 6, 20261mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: eventpoll: defer struct eventpoll free to RCU grace period In certain situations, ep_free() in eventpoll.c will kfree the epi->ep eventpoll struct while it still being used by another concurrent thread. Defer the kfree() to an RCU callback to prevent UAF.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥6.4.1  –  <6.6.136
linuxlinux_kernel*≥6.7  –  <6.12.83
linuxlinux_kernel*≥6.13  –  <6.18.24
linuxlinux_kernel*≥6.19  –  <6.19.14
linuxlinux_kernel6.4any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/07712db80857d5d09ae08f3df85a708ecfc3b61f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b1173b165421561db29f30afc7e97d940a398a9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7e8083f5eeedab0f460063b9c2c14c9a4e71a427
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/902120be4f44947df6311002addc7faf69bdbff1
  • git.kernel.org https://git.kernel.org/stable/c/a6566cd33f6f967a7651ebf2ce0dd31572e319cf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6d57084372161f86660bc4607784420e00efe2c
  • git.kernel.org https://git.kernel.org/stable/c/ae0bb9c1fb7c2594519aeeb096cf2c3b7837b322
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/07712db80857d5d09ae08f3df85a708ecfc3b61f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b1173b165421561db29f30afc7e97d940a398a9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7e8083f5eeedab0f460063b9c2c14c9a4e71a427
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6566cd33f6f967a7651ebf2ce0dd31572e319cf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ae0bb9c1fb7c2594519aeeb096cf2c3b7837b322
    Patch