CVE-2026-43125
Published: May 6, 2026
Modified: May 11, 2026
CVSS v3.1
9.8
Description
In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tree The len parameter in dlm_dump_rsb_name() is not validated and comes from network messages. When it exceeds DLM_RESNAME_MAXLEN, it can cause out-of-bounds write in dlm_search_rsb_tree(). Add length validation to prevent potential buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 7210cb7a72a22303cdb225bd1aea28697a17bbae - < 67288113c5e6cf9e659b4065c0ed6f16100e0c71affected 7210cb7a72a22303cdb225bd1aea28697a17bbae - < 082083c9fbd99422a0370fe2102144a231c9f5d6affected 7210cb7a72a22303cdb225bd1aea28697a17bbae - < 5f053a2e7209d326cbbc07738fa6d6893d307438affected 7210cb7a72a22303cdb225bd1aea28697a17bbae - < 080e5563f878c64e697b89e7439d730d0daad882 |
Linux | Linux | affected 3.4unaffected 0 - < 3.4unaffected 6.12.75 - <= 6.12.*unaffected 6.18.16 - <= 6.18.*unaffected 6.19.6 - <= 6.19.*+1 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now