Naming Confusion in Linux Kernel's Memory Function Affects Performance
CVE-2026-43073

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 5 May 2026

What is CVE-2026-43073?

The Linux kernel contains a vulnerability related to a misleadingly named memory copy function '__copy_user_nocache()'. This function was meant for user space access but lacked clarity in its purpose. It uses non-temporal stores for its destination but not for the source, creating confusion among drivers that misused it for kernel copying without appropriate exception handling. The function's renaming and re-prototyping aim to resolve these ambiguities, aligning its implementation with proper user copying logic and improving safety and performance in memory management.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 14b9194db4a28421a4dbe5d6e519efbaa7c5f3cd

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/14b9194db4a28421a4dbe5d6e...

https://git.kernel.org/stable/c/c6d4e0599e7e73abc04e2488d...

https://git.kernel.org/stable/c/d993e1723aa2a085aa0d72e70...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 5, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43073 Data

JSON