In the Linux kernel, the following vulnerability has been resolved:
mpls: add seqcount to protect the platform_label{,s} pair
The RCU-protected codepaths (mplsforward, mplsdumproutes) can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize (resizeplatformlabeltable, under platform_mutex). This can lead to OOB accesses.
This patch adds a seqcount, so that we get a consistent snapshot.
Note that mplslabelok is also susceptible to this, so the check against RTADST in rtmtorouteconfig, done outside platformmutex, is not sufficient. This value gets passed to mplslabelok once more in both mplsrouteadd and mplsroute_del, so there is no issue, but that additional check must not be removed.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43042.json",
"cna_assigner": "Linux"
}