CVE-2026-43078

HIGH EPSS 2.9%
Published May 6, 20261mo ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl When page reassignment was added to af_alg_pull_tsgl the original loop wasn't updated so it may try to reassign one more page than necessary. Add the check to the reassignment so that this does not happen. Also update the comment which still refers to the obsolete offset argument.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-787 Out-of-bounds Write Memory Safety

Affected Products 15

VendorProductVersionRange
linuxlinux_kernel*≥4.14.1  –  <5.10.254
linuxlinux_kernel*≥5.11  –  <5.15.204
linuxlinux_kernel*≥5.16  –  <6.1.170
linuxlinux_kernel*≥6.2  –  <6.6.137
linuxlinux_kernel*≥6.7  –  <6.12.85
linuxlinux_kernel*≥6.13  –  <6.18.24
linuxlinux_kernel*≥6.19  –  <6.19.14
linuxlinux_kernel4.14any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/2b781d1d4f933990318bcc5c68fb75a717379e42
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/31d00156e50ecad37f2cb6cbf04aaa9a260505ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/710a4ce5d7afd9fe082c75dec282ab4a11c0fe71
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9532501e0f1b200ea80baa0e33e0b06da10bb271
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c8369a6d62f5abde9cbd4b62c45bf4b996be2468
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dea5fcf085f977b6c2de1b2d4ec4767b6c840d1f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f7826bc0b39928a4a22f6b815dd9940b22a63503
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fa48d3ea9cdbfb28c1fd6756c6c5cd01351aa51e
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/2b781d1d4f933990318bcc5c68fb75a717379e42
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/31d00156e50ecad37f2cb6cbf04aaa9a260505ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/710a4ce5d7afd9fe082c75dec282ab4a11c0fe71
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9532501e0f1b200ea80baa0e33e0b06da10bb271
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c8369a6d62f5abde9cbd4b62c45bf4b996be2468
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dea5fcf085f977b6c2de1b2d4ec4767b6c840d1f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f7826bc0b39928a4a22f6b815dd9940b22a63503
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fa48d3ea9cdbfb28c1fd6756c6c5cd01351aa51e
    Patch