CVE-2026-43210

Source
https://cve.org/CVERecord?id=CVE-2026-43210
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43210.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43210
Downstream
Published
2026-05-06T11:28:13.609Z
Modified
2026-07-15T01:49:18.660876185Z
Summary
tracing: ring-buffer: Fix to check event length before using
Details

In the Linux kernel, the following vulnerability has been resolved:

tracing: ring-buffer: Fix to check event length before using

Check the event length before adding it for accessing next index in rbreaddata_buffer(). Since this function is used for validating possibly broken ring buffers, the length of the event could be broken. In that case, the new event (e + len) can point a wrong address. To avoid invalid memory access at boot, check whether the length of each event is in the possible range before using it.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43210.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5f3b6e839f3ceb8d6ef02231ba9b5aca71b8bf55
Fixed
b4700c089a10f89de3a5149d57f8a58306458982
Fixed
5026010110a5ad2268d8c23e1e286ab7c736f7ac
Fixed
9eb80e54494ef1efef8a64bec4ffa672c9cf411e
Fixed
912b0ee248c529a4f45d1e7f568dc1adddbf2a4a

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43210.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.12.0
Fixed
6.12.75
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.16
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.6

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43210.json"