Out-of-Bounds Access in Linux Kernel Mailbox Controller
CVE-2026-43281

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-43281?

A vulnerability exists in the Linux kernel's mailbox controller that permits out-of-bounds memory access. This occurs when the #mbox-cells property is incorrectly set to zero in the device tree, leading to potential memory corruption. If the mailbox controller fails to provide necessary function pointers for memory management, the default behavior of fw_mbox_index_xlate() is triggered, which lacks proper bounds checking. This flaw could allow malicious entities to exploit the memory access, resulting in system instability or unauthorized access to critical data.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2662ed331a69c0b551f78af58f12eb629a89a36f

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 31c4c67dec3362094a6747a171a4848e98542265

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 01d9a8c2615d436b2b30c19c1afe9fcd5726ff6d

References

https://git.kernel.org/stable/c/2662ed331a69c0b551f78af58...

https://git.kernel.org/stable/c/31c4c67dec3362094a6747a17...

https://git.kernel.org/stable/c/01d9a8c2615d436b2b30c19c1...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43281 Data

JSON