Description

In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhost_vdpa Remove duplication by consolidating these here. This reduces the posibility of a parent driver missing them. While we're at it, fix a bug in vdpa_sim where a valid ASID can be assigned to a group equal to ngroups, causing an out of bound write.

INFO

Published Date :

2026-05-06T11:28:39.578Z

Last Modified :

2026-05-08T12:41:33.946Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-43248 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-43248.

URL Resource
https://git.kernel.org/stable/c/406db68f9cb976a8ddfafd631197264f2307e9c9 cve-icon cve-icon
https://git.kernel.org/stable/c/7441d35d14d9a3d66d925d90cb73c75394e6d454 cve-icon cve-icon
https://git.kernel.org/stable/c/cd025c1e876b4e262e71398236a1550486a73ede cve-icon cve-icon
https://git.kernel.org/stable/c/ddb57354634b6ba851b79da45f1de42c646f27d0 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026050602-CVE-2026-43248-7506@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-43248 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-43248 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact