Out-of-Bounds Read in Linux Kernel's madvise Function
CVE-2026-43280

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-43280?

A vulnerability in the Linux kernel allows for an out-of-bounds read through the madvise IOCTL when a user supplies an invalid pat_index value. The function xe_pat_index_get_coh_mode() performs unchecked array access, which can lead to unauthorized data exposure. Although there are debug warnings in place, the unsafe access still occurs in production environments, potentially enabling an attacker to exploit this oversight.

Affected Version(s)

Linux ada7486c5668db542a7d361268df931aca5b726a

Linux ada7486c5668db542a7d361268df931aca5b726a < 79f52655567a6471ff3d0d6325ede91bb14461f4

Linux ada7486c5668db542a7d361268df931aca5b726a

References

https://git.kernel.org/stable/c/ffba51100ff61792fefbae11c...

https://git.kernel.org/stable/c/79f52655567a6471ff3d0d632...

https://git.kernel.org/stable/c/fbbe32618e97eff81577a01eb...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43280 Data

JSON