CVE-2026-43294

In the Linux kernel, the following vulnerability has been resolved: drm: renesas: rz-du: mipidsi: fix kernel panic when rebooting for some panels Since commit 56de5e305d4b "clk: renesas: r9a07g044: Add MSTOP for RZ/G2L" we may get the following kernel panic, for some panels, when rebooting:...

CVE-2026-43294

In the Linux kernel, the following vulnerability has been resolved: drm: renesas: rz-du: mipidsi: fix kernel panic when rebooting for some panels Since commit 56de5e305d4b "clk: renesas: r9a07g044: Add MSTOP for RZ/G2L" we may get the following kernel panic, for some panels, when rebooting:...

CVE-2026-43294

The CVE-2026-43294 entry concerns Linux kernel’s MIPI-DSI driver for Renesas rz-du/rzg2l panels. Root cause: in reboot/unprepare paths, the MIPI-DSI interface could be stopped too late, causing a kernel panic via rzg2l_mipi_dsi_host_transfer(). Fix: move rzg2l_mipi_dsi_stop() to the new callback ...

CVE-2026-43288

Summary: CVE-2026-43288 relates to the Linux kernel ext4 filesystem. The root cause is a per-CPU counter accessed before it is initialized during block bitmap validation, which can cause a kernel panic and potential DoS when mounting a specially crafted ext4 filesystem with quota/project options....

Advisory ROSA-SA-2026-3264

Software: kernel 4.18.0 OS: ROSA Virtualization 3.1 unaffected versions = kernel-4.18.0-553.123.1.el810 affected versions lock, allowing a local attacker to cause a denial of service or execute arbitrary code when frequently switching a thread simultaneously with opening/closing a related...

PT-2026-38936

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A kernel panic can occur during system reboot for certain panels. This issue happens when panels require the transmission of MIPI-DSI commands within their unprepare callback. Because th...

PT-2026-39077

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the powerpc architecture's perf subsystem where the kernel fails to verify if current-mm is active before attempting to retrieve the user callchain. This can lead to a...

PT-2026-38930

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A panic occurs in the ext4 file system when the DOUBLE CHECK macro is defined. During the execution of mb group bb bitmap alloc, the system reads and validates the block bitmap. If...

Linux Distros Unpatched Vulnerability : CVE-2026-43416

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc, perf: Check that current-mm is alive before getting user callchain It may happen that mm is already released, which leads to kernel panic. This adds th...

SUSE CVE-2026-43107

In the Linux kernel, the following vulnerability has been resolved: xfrm: account XFRMAIFID in aevent size calculation xfrmgetae allocates the reply skb with xfrmaeventmsgsize, then buildaevent appends attributes including XFRMAIFID when x-ifid is set. xfrmaeventmsgsize does not include space for...

SUSE CVE-2026-43186

In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in ioam6filltracedata On the receive path, ioam6filltracedata uses trace-nodelen to decide how much data to write for each node. It trusts this field as-is from the incoming packet, with no...

Linux Distros Unpatched Vulnerability : CVE-2026-43247

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: chips-media: wave5: Fix SError of kernel panic when closed SError of kernel panic rarely happened while testing fluster. The root cause was to enter...

Linux Distros Unpatched Vulnerability : CVE-2026-43229

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: chips-media: wave5: Fix device cleanup order to prevent kernel panic Move video device unregistration to the beginning of the remove function to ensure a...

CVE-2026-43237

A flaw was found in the Linux kernel's AMD GPU amdgpu driver. Incorrect management of graphics memory dmafence references within the amdgpugemvaioctl function can lead to a reference count underflow and a use-after-after-free condition. A local attacker could exploit this vulnerability to trigger...

CVE-2026-43228

A flaw was found in the Linux kernel HFS component. A local attacker could provide a specially crafted and corrupted Master Directory Block MDB to trigger a kernel panic. This vulnerability, caused by improper error handling of CNID count checks, leads to a system Denial of Service DoS...

CVE-2026-43199

A flaw was found in the Linux kernel's net/mlx5e component. This vulnerability, identified as a "scheduling while atomic" bug, occurs when the mlx5eipsecinitmacs function attempts to query the hardware for a MAC address in an atomic context, which can lead to the system attempting to sleep. A loc...

CVE-2026-43186

A flaw was found in the Linux kernel's IPv6 In-situ Operations, Administration, and Maintenance IOAM functionality. A remote attacker can send a specially crafted packet that manipulates the nodelen field while processing trace data. This manipulation leads to a heap buffer overflow, causing...

CVE-2026-43170

A flaw was found in the Linux kernel's USB DWC3 gadget driver. This vulnerability occurs when the dwc3gadgetvbusdraw function is called from an atomic context, which then invokes power management integrated circuit PMIC APIs that may cause the system to sleep. An attacker could exploit this...

CVE-2026-43107

A flaw was found in the Linux kernel's xfrm subsystem. A remote attacker could send a specially crafted netlink message that, due to an incorrect size calculation when handling XFRMAIFID attributes, would lead to a buffer overflow. This issue could cause a kernel panic, resulting in a Denial of...

CVE-2026-43229

A flaw was found in the chips-media wave5 driver within the Linux kernel. An incorrect device cleanup order allows the kernel's worker thread to attempt reading from powered-off hardware. This can occur when the system enters autosuspend mode, leading to a bus error and a kernel panic. This...