Description

In the Linux kernel, the following vulnerability has been resolved: ntfs: ->d_compare() must not block ... so don't use __getname() there. Switch it (and ntfs_d_hash(), while we are at it) to kmalloc(PATH_MAX, GFP_NOWAIT). Yes, ntfs_d_hash() almost certainly can do with smaller allocations, but let ntfs folks deal with that - keep the allocation size as-is for now. Stop abusing names_cachep in ntfs, period - various uses of that thing in there have nothing to do with pathnames; just use k[mz]alloc() and be done with that. For now let's keep sizes as-in, but AFAICS none of the users actually want PATH_MAX.

INFO

Published Date :

2026-05-06T11:28:37.602Z

Last Modified :

2026-05-08T12:41:32.781Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-43245 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-43245.

URL Resource
https://git.kernel.org/stable/c/142c444a395f4d26055c8a4473e228bb86283f1e cve-icon cve-icon
https://git.kernel.org/stable/c/ca2a04e84af79596e5cd9cfe697d5122ec39c8ce cve-icon cve-icon
https://git.kernel.org/stable/c/fb4b1f969ba01fa1d4088467a02fc1e5f0806710 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026050601-CVE-2026-43245-6e9f@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-43245 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-43245 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact