CVE-2026-43351

Source
https://cve.org/CVERecord?id=CVE-2026-43351
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43351.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43351
Downstream
Published
2026-05-08T14:21:08.868Z
Modified
2026-07-15T01:49:16.729555377Z
Summary
KVM: arm64: Eagerly init vgic dist/redist on vgic creation
Details

In the Linux kernel, the following vulnerability has been resolved:

KVM: arm64: Eagerly init vgic dist/redist on vgic creation

If vgicallocateprivateirqslocked() fails for any odd reason, we exit kvmvgiccreate() early, leaving dist->rd_regions uninitialised.

kvmvgicdist_destroy() then comes along and walks into the weeds trying to free the RDs. Got to love this stuff.

Solve it by moving all the static initialisation early, and make sure that if we fail halfway, we're in a reasonable shape to perform the rest of the teardown. While at it, reset the vgic model on failure, just in case...

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43351.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
b3aa9283c0c505b5cfd25f7d6cfd720de2adc807
Fixed
b7493f48c3dba75674a4ee505b4afa8fe5102457
Fixed
a24f1d80fbcdbf8b2a7044a00fa12b3972b4c31c
Fixed
ac6769c8f948dff33265c50e524aebf9aa6f1be0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43351.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.14.0
Fixed
6.18.19
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43351.json"