Linux Kernel Vulnerability in MPLS Forwarding and Route Management
CVE-2026-43042
What is CVE-2026-43042?
A vulnerability has been identified in the Linux kernel related to the Multi-Protocol Label Switching (MPLS) functionality. The affected areas include the mpls_forward and mpls_dump_routes code paths, which may encounter an inconsistent view of platform labels during concurrent operations, specifically resizing the platform label table. When this occurs under the platform mutex, it can lead to out-of-bounds (OOB) accesses, compromising system integrity. A recent patch has introduced a seqcount to ensure a consistent snapshot of platform labels, preventing inconsistencies. Additionally, while checks against RTA_DST outside the platform mutex are not sufficient to eliminate potential vulnerabilities, this patch ensures that critical operations within mpls_route_add and mpls_route_del maintain integrity.
Affected Version(s)
Linux 7720c01f3f590116882e251f13c7e1d5602f8643 < 5bb3caf0bbfb56f1a00d2af072ac3d8395a3b9ef
Linux 7720c01f3f590116882e251f13c7e1d5602f8643 < 629ec78ef8608d955ce217880cdc3e1873af3a15
Linux 4.1