-
CVE-2026-43089
- EPSS 0.02%
- Veröffentlicht 06.05.2026 07:40:22
- Zuletzt bearbeitet 06.05.2026 13:08:07
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
xfrm_user: fix info leak in build_mapping()
In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_mapping() struct xfrm_usersa_id has a one-byte padding hole after the proto field, which ends up never getting set to zero before copying out to userspace. Fix that up by zeroing out the whole structure before setting individual variables.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
3a2dfbe8acb154905fdc2fd03ec56df42e6c4cc4
Version <
d3125c541a96fb3c0fc7210112684baf22b6c24d
Status
affected
Version
3a2dfbe8acb154905fdc2fd03ec56df42e6c4cc4
Version <
5a1a4b049ddde41466ccac0daeec326254b133f2
Status
affected
Version
3a2dfbe8acb154905fdc2fd03ec56df42e6c4cc4
Version <
f779a6b6cdb6e12baa0663063ac59ab2a8f20c0c
Status
affected
Version
3a2dfbe8acb154905fdc2fd03ec56df42e6c4cc4
Version <
700c9622b23c33b5933e6dcea816492c064e4e10
Status
affected
Version
3a2dfbe8acb154905fdc2fd03ec56df42e6c4cc4
Version <
1beb76b2053b68c491b78370794b8ff63c8f8c02
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
2.6.29
Status
affected
Version
0
Version <
2.6.29
Status
unaffected
Version <=
6.6.*
Version
6.6.136
Status
unaffected
Version <=
6.12.*
Version
6.12.83
Status
unaffected
Version <=
6.18.*
Version
6.18.24
Status
unaffected
Version <=
6.19.*
Version
6.19.14
Status
unaffected
Version <=
*
Version
7.0
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.068 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|