CVE-2026-43149 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean()

The priv->rx_buffer and priv->tx_buffer are alloc'd together as
contiguous buffers in uhdlc_init() but freed as two buffers in
uhdlc_memclean().

Change the cleanup to only call dma_free_coherent() once on the whole
buffer.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< 6496fb830cbb741d831225cc4e7e5601c6e42970
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< ba8d8429e5d6c36f9a654d2b96b9e043c43d92b4
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< 011ae5dd84dc9f05eb9b8e1adff44252ac776e7b
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< 0f85a9655445e67bb0238cfc983d7c383b54938e
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< 84b932bc9899d43e5829e6cf088b72d73a922b2b
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< d8a522085d09b30aba1016daf1dddac37c0f0285
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< d68994e37ac3b285692559776e0279a88a3b5f8d
`c19b6d246a35627c3a69b2fa6bdece212b48214b`	affected	< 36bd7d5deef936c4e1e3cd341598140e5c14c1d3

Linux

affected

Version	Status	Constraints
`4.8`	affected	—
`0`	unaffected	< 4.8
`5.10.252`	unaffected	≤ 5.10.*
`5.15.202`	unaffected	≤ 5.15.*
`6.1.165`	unaffected	≤ 6.1.*
`6.6.128`	unaffected	≤ 6.6.*
`6.12.75`	unaffected	≤ 6.12.*
`6.18.16`	unaffected	≤ 6.18.*
`6.19.6`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Project Subscriptions

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/011ae5dd84dc9f05eb9b8e1adff44252ac776e7b
https://git.kernel.org/stable/c/0f85a9655445e67bb0238cfc983d7c383b54938e
https://git.kernel.org/stable/c/36bd7d5deef936c4e1e3cd341598140e5c14c1d3
https://git.kernel.org/stable/c/6496fb830cbb741d831225cc4e7e5601c6e42970
https://git.kernel.org/stable/c/84b932bc9899d43e5829e6cf088b72d73a922b2b
https://git.kernel.org/stable/c/ba8d8429e5d6c36f9a654d2b96b9e043c43d92b4
https://git.kernel.org/stable/c/d68994e37ac3b285692559776e0279a88a3b5f8d
https://git.kernel.org/stable/c/d8a522085d09b30aba1016daf1dddac37c0f0285
https://lore.kernel.org/linux-cve-announce/2026050627-CVE-2026-43149-cd24@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-43149
https://www.cve.org/CVERecord?id=CVE-2026-43149

History

Thu, 07 May 2026 04:15:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-416

Thu, 07 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-1341
References		https://lore.kernel.org/linux-cve-announce/2026050627-CVE-2026-43149-cd24@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-43149 https://www.cve.org/CVERecord?id=CVE-2026-43149

Wed, 06 May 2026 18:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-416

Wed, 06 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean() The priv->rx_buffer and priv->tx_buffer are alloc'd together as contiguous buffers in uhdlc_init() but freed as two buffers in uhdlc_memclean(). Change the cleanup to only call dma_free_coherent() once on the whole buffer.
Title		net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/011ae5dd84dc9f05eb9b8e1adff44252ac776e7b https://git.kernel.org/stable/c/0f85a9655445e67bb0238cfc983d7c383b54938e https://git.kernel.org/stable/c/36bd7d5deef936c4e1e3cd341598140e5c14c1d3 https://git.kernel.org/stable/c/6496fb830cbb741d831225cc4e7e5601c6e42970 https://git.kernel.org/stable/c/84b932bc9899d43e5829e6cf088b72d73a922b2b https://git.kernel.org/stable/c/ba8d8429e5d6c36f9a654d2b96b9e043c43d92b4 https://git.kernel.org/stable/c/d68994e37ac3b285692559776e0279a88a3b5f8d https://git.kernel.org/stable/c/d8a522085d09b30aba1016daf1dddac37c0f0285

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T11:27:31.708Z

Updated: 2026-05-06T11:27:31.708Z

Reserved: 2026-05-01T14:12:55.989Z

Link: CVE-2026-43149

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-06T12:16:32.553

Modified: 2026-05-06T13:07:51.607

Link: CVE-2026-43149

Redhat

Severity :

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43149 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-07T04:00:14Z

Weaknesses

CWE-1341

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object