CVE-2026-43157

MEDIUM EPSS 2.8%
Published May 6, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: CGX: fix bitmap leaks The RX/TX flow-control bitmaps (rx_fc_pfvf_bmap and tx_fc_pfvf_bmap) are allocated by cgx_lmac_init() but never freed in cgx_lmac_exit(). Unbinding and rebinding the driver therefore triggers kmemleak: unreferenced object (size 16): backtrace: rvu_alloc_bitmap cgx_probe Free both bitmaps during teardown.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥5.18  –  <6.1.165
linuxlinux_kernel*≥6.2  –  <6.6.128
linuxlinux_kernel*≥6.7  –  <6.12.75
linuxlinux_kernel*≥6.13  –  <6.18.16
linuxlinux_kernel*≥6.19  –  <6.19.6

References 6

  • git.kernel.org https://git.kernel.org/stable/c/013ac469596a0b8671e62d89c89ae0bd46bbe667
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3def995c4ede842adf509c410e92d09a0cedc965
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6d389382ee655128056fbdab86baad8495ffbf33
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad8a13a45c5c24d0d32de9a1c3fd58498a675ece
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ccca14bbdcc25829d355b9f4d3249f43dadb71c1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ccef79af58b43787c25710c9da96651c6ddfe50f
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/013ac469596a0b8671e62d89c89ae0bd46bbe667
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3def995c4ede842adf509c410e92d09a0cedc965
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6d389382ee655128056fbdab86baad8495ffbf33
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad8a13a45c5c24d0d32de9a1c3fd58498a675ece
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ccca14bbdcc25829d355b9f4d3249f43dadb71c1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ccef79af58b43787c25710c9da96651c6ddfe50f
    Patch