CVE-2026-43457

MEDIUM EPSS 1.8%
Published May 8, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 8, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: mctp: i2c: fix skb memory leak in receive path When 'midev->allow_rx' is false, the newly allocated skb isn't consumed by netif_rx(), it needs to free the skb directly.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
1.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥5.18  –  <6.1.167
linuxlinux_kernel*≥6.2  –  <6.6.130
linuxlinux_kernel*≥6.7  –  <6.12.78
linuxlinux_kernel*≥6.13  –  <6.18.19
linuxlinux_kernel*≥6.19  –  <6.19.9
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/0fb2adbdd5c03e8c9ebcdc48afd414b2724c85eb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1b1be322342a6b0085bf6ee52235e5ac9834ec25
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1ec54187e1aa40a4cfa2b265e9a311179f24b98d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9f81be2ab9d8e4744871bfb3e868ef413413829f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d7900a43b0a314a645ca0a2adf45928dbc7001f4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3f5e0f22cfc2371e7471c9fd5b4da78f9df7c69
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0fb2adbdd5c03e8c9ebcdc48afd414b2724c85eb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1b1be322342a6b0085bf6ee52235e5ac9834ec25
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1ec54187e1aa40a4cfa2b265e9a311179f24b98d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9f81be2ab9d8e4744871bfb3e868ef413413829f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d7900a43b0a314a645ca0a2adf45928dbc7001f4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3f5e0f22cfc2371e7471c9fd5b4da78f9df7c69
    Patch