Out-of-Bounds Access in Linux Kernel Affects Networking Functionality
CVE-2026-43083

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-43083?

A vulnerability exists in the networking subsystem of the Linux kernel that can lead to an out-of-bounds access of the dev->_tx[] array. This issue arises when trace->type.bit6 is activated, potentially permitting unauthorized access to memory locations. Users could face system instability when the ingress device operates more RX queues than the egress device's TX queues. Additionally, this flaw exposes inaccuracies in per queue visibility and necessitates enhancements in locking mechanisms to ensure thread safety across different contexts, thereby putting system integrity at risk.

Affected Version(s)

Linux b63c5478e9cb1d1504eb02d9dac827ad24612b32 < 6d1d9ed9b409e0662241e3d245d574a18f643494

Linux b63c5478e9cb1d1504eb02d9dac827ad24612b32 < 95a1334748c95dd15546056280ade0c4b8dd7b78

Linux b63c5478e9cb1d1504eb02d9dac827ad24612b32

References

https://git.kernel.org/stable/c/6d1d9ed9b409e0662241e3d24...

https://git.kernel.org/stable/c/95a1334748c95dd1554605628...

https://git.kernel.org/stable/c/b30b1675aa2bcf0491fd3830b...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43083 Data

JSON