Linux Kernel Vulnerability in MMC Core Affecting Multiple Distributions
CVE-2026-43484

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 13 May 2026

What is CVE-2026-43484?

A vulnerability in the Linux kernel's MMC core was identified that involved improper handling of control flags. The design allowed simultaneous updates to the claimed and retune flags within a shared bitfield, leading to potential race conditions. When multiple contexts attempted to modify these flags concurrently, unexpected behavior could occur, specifically causing spurious warnings related to the claimed state of the MMC host. To mitigate this, modifications were made to redefine the relevant flags as boolean values, thus eliminating shared-word dependencies and ensuring safer, more reliable flag management.

Affected Version(s)

Linux 6c0cedd1ef9527ef13e66875746570e76a3188a7 < 41dce4dae583a8ce06a7ebf4ce704c46a142957c

Linux 6c0cedd1ef9527ef13e66875746570e76a3188a7

Linux 6c0cedd1ef9527ef13e66875746570e76a3188a7 < 270277c2ab631044867adb1bd2f2433d3892de6e

References

https://git.kernel.org/stable/c/41dce4dae583a8ce06a7ebf4c...

https://git.kernel.org/stable/c/bb7fc2498c3bb25fa6a91f22f...

https://git.kernel.org/stable/c/270277c2ab631044867adb1bd...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 13, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43484 Data

JSON