CVE-2026-43281
Published: May 6, 2026
Modified: Jun 1, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: mailbox: Prevent out-of-bounds access in fw_mbox_index_xlate() Although it is guided that `#mbox-cells` must be at least 1, there are many instances of `#mbox-cells = <0>;` in the device tree. If that is the case and the corresponding mailbox controller does not provide `fw_xlate` and of_xlate` function pointers, `fw_mbox_index_xlate()` will be used by default and out-of-bounds accesses could occur due to lack of bounds check in that function.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c - < 2c7ff651ec6b660c7c96a36db9328b3232f555d8affected 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c - < ec0874447895b994182a962d2fee9ef075de5efdaffected 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c - < 2662ed331a69c0b551f78af58f12eb629a89a36faffected 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c - < 31c4c67dec3362094a6747a171a4848e98542265affected 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c - < 01d9a8c2615d436b2b30c19c1afe9fcd5726ff6d+3 more versions |
Linux | Linux | affected 3.18unaffected 0 - < 3.18unaffected 5.10.258 - <= 5.10.*unaffected 5.15.209 - <= 5.15.*unaffected 6.1.167 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now