Local File Attribute Issue in Linux Kernel Affecting System Performance
CVE-2026-43474

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 May 2026

What is CVE-2026-43474?

A vulnerability has been identified in the Linux kernel that involves the improper initialization of local variables within the file attribute-handling mechanism. Specifically, in the routine handling file attributes, the variable responsible for storing the file attributes is not initialized before being used, potentially leading to unpredictable behavior and system instability. This issue was reported in fuse_fileattr_get and could affect various systems utilizing the affected kernel versions. Prompt action through updates is recommended to ensure system integrity and performance.

Affected Version(s)

Linux be7efb2d20d67f334a7de2aef77ae6c69367e646 < 379e19e820dd1c6145426b97467728b3b89c0b42

Linux be7efb2d20d67f334a7de2aef77ae6c69367e646

References

https://git.kernel.org/stable/c/379e19e820dd1c6145426b974...

https://git.kernel.org/stable/c/b8c182b2c8c44c6016b11d8af...

https://git.kernel.org/stable/c/cb184dd19154fc486fa3d9e02...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 8, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43474 Data

JSON