DMA Mapping Leak in Linux Kernel Affecting Network Functionality
CVE-2026-43462

7.5HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 May 2026

What is CVE-2026-43462?

An issue has been identified in the Linux kernel's network subsystem, specifically within the EMAC (Ethernet Media Access Controller) driver. The vulnerability arises from improper handling of DMA mappings during mapping errors, potentially leading to memory leaks. When a mapping error occurs, the necessary buffers are not correctly freed, which can affect system stability and network performance. The recent fix addresses this by ensuring that all leaked DMA mappings are properly released using the emac_free_tx_buf() function, thereby safeguarding the integrity of the networking operations.

Affected Version(s)

Linux bfec6d7f2001c7470c3cd261ae65a3ba8737f226

Linux bfec6d7f2001c7470c3cd261ae65a3ba8737f226 < 86292155bea578ebab0ca3b65d4d87ecd8a0e9ea

References

https://git.kernel.org/stable/c/c34ebd7b24ea70be3c6fdb693...

https://git.kernel.org/stable/c/edeaba385318f60ec1b32470d...

https://git.kernel.org/stable/c/86292155bea578ebab0ca3b65...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 8, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43462 Data

JSON