CVE-2026-43272

MEDIUM EPSS 1.8%
Published May 6, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix possible dereference of uninitialized pointer There is a pointer head_page in rb_meta_validate_events() which is not initialized at the beginning of a function. This pointer can be dereferenced if there is a failure during reader page validation. In this case the control is passed to "invalid" label where the pointer is dereferenced in a loop. To fix the issue initialize orig_head and head_page before calling rb_validate_buffer. Found by Linux Verification Center (linuxtesting.org) with SVACE.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
1.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 2

VendorProductVersionRange
linuxlinux_kernel*≥6.12  –  <6.18.16
linuxlinux_kernel*≥6.19  –  <6.19.6

References 3

  • git.kernel.org https://git.kernel.org/stable/c/bc77986f3cb7476637052edf2d87137fa39f153d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d9942396845fef2369478c157b26738fe07142f6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f1547779402c4cd67755c33616b7203baa88420b
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/bc77986f3cb7476637052edf2d87137fa39f153d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d9942396845fef2369478c157b26738fe07142f6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f1547779402c4cd67755c33616b7203baa88420b
    Patch