Linux Kernel Vulnerability Affecting Buffer Management by The Linux Foundation
CVE-2026-43498

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 21 May 2026

What is CVE-2026-43498?

A vulnerability in the Linux kernel allows for the improper re-exporting of imported GEM buffers. This issue can lead to the loss of buffer flags, resulting in incorrect access to devices and potential data corruption. By implementing a custom callback for prime_handle_to_fd, the system now checks whether an object is imported, returning an error if it is. This enhancement addresses the risks associated with buffer mismanagement, protecting system integrity and data fidelity.

Affected Version(s)

Linux 57557964b582238d5ee4b8538d1c4694f91c2186 < 3756043dd695bba34cc728cdc5688dcb49ac8043

Linux 57557964b582238d5ee4b8538d1c4694f91c2186 < 7dd57d7a6350770dfc283287125c409e995200e0

Linux 6.19

References

https://git.kernel.org/stable/c/3756043dd695bba34cc728cdc...

https://git.kernel.org/stable/c/7dd57d7a6350770dfc2832871...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 21, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43498 Data

JSON