CVE-2026-43283

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle dma_free_coherent() in error path takes priv->rx_buf.alloc_len as the dma handle. This would lead to improper unmapping of the buffer. Change the dma handle to priv->rx_buf.alloc_phys.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.0 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://git.kernel.org/stable/c/0f589ee54fd6d76d3f75e745f7f12c64cbd749e5	Patch
https://git.kernel.org/stable/c/1b1371cd4032ae859838ebc74215f569987bb197	Patch
https://git.kernel.org/stable/c/1b1d3c5d58a80a19d017a409aa2308162bab5bbf	Patch
https://git.kernel.org/stable/c/1e300c33ef3cc544c2b9c693778fe9490cfe9184	Patch
https://git.kernel.org/stable/c/7e54ff938bebb173822b4c38b33fc164c1cabf92	Patch
https://git.kernel.org/stable/c/8320727be7ff704e07c87624efc2a4a75f54b3ce	Patch
https://git.kernel.org/stable/c/accd0599bc8e73b962247c6c6c70ca7aa1f8e8d0	Patch
https://git.kernel.org/stable/c/ffe68c3766997d82e9ccaf1cdbd47eba269c4aa2	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:3.15:-::::::
	cpe:2.3:o:linux:linux_kernel:3.15:rc7::::::
	cpe:2.3:o:linux:linux_kernel:3.15:rc8::::::

History

08 May 2026, 19:08

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/0f589ee54fd6d76d3f75e745f7f12c64cbd749e5 -~~	() https://git.kernel.org/stable/c/0f589ee54fd6d76d3f75e745f7f12c64cbd749e5 - Patch
References	~~() https://git.kernel.org/stable/c/1b1371cd4032ae859838ebc74215f569987bb197 -~~	() https://git.kernel.org/stable/c/1b1371cd4032ae859838ebc74215f569987bb197 - Patch
References	~~() https://git.kernel.org/stable/c/1b1d3c5d58a80a19d017a409aa2308162bab5bbf -~~	() https://git.kernel.org/stable/c/1b1d3c5d58a80a19d017a409aa2308162bab5bbf - Patch
References	~~() https://git.kernel.org/stable/c/1e300c33ef3cc544c2b9c693778fe9490cfe9184 -~~	() https://git.kernel.org/stable/c/1e300c33ef3cc544c2b9c693778fe9490cfe9184 - Patch
References	~~() https://git.kernel.org/stable/c/7e54ff938bebb173822b4c38b33fc164c1cabf92 -~~	() https://git.kernel.org/stable/c/7e54ff938bebb173822b4c38b33fc164c1cabf92 - Patch
References	~~() https://git.kernel.org/stable/c/8320727be7ff704e07c87624efc2a4a75f54b3ce -~~	() https://git.kernel.org/stable/c/8320727be7ff704e07c87624efc2a4a75f54b3ce - Patch
References	~~() https://git.kernel.org/stable/c/accd0599bc8e73b962247c6c6c70ca7aa1f8e8d0 -~~	() https://git.kernel.org/stable/c/accd0599bc8e73b962247c6c6c70ca7aa1f8e8d0 - Patch
References	~~() https://git.kernel.org/stable/c/ffe68c3766997d82e9ccaf1cdbd47eba269c4aa2 -~~	() https://git.kernel.org/stable/c/ffe68c3766997d82e9ccaf1cdbd47eba269c4aa2 - Patch
CWE		NVD-CWE-noinfo
First Time		Linux linux Kernel Linux
CPE		cpe:2.3:o:linux:linux_kernel:3.15:-:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:3.15:rc8:::::: cpe:2.3:o:linux:linux_kernel:3.15:rc7::::::

08 May 2026, 13:16

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8

06 May 2026, 12:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-05-06 12:16

Updated : 2026-05-08 19:08

NVD link : CVE-2026-43283

Mitre link : CVE-2026-43283

CVE.ORG link : CVE-2026-43283

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

8.8 /10