CVE-2026-43148

Published: May 6, 2026Modified: May 13, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: powerpc/smp: Add check for kcalloc() failure in parse_thread_groups() As kcalloc() may fail, check its return value to avoid a NULL pointer dereference when passing it to of_property_read_u32_array().

Affected (6)

Products: Linux: Linux Kernel

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 5.11 to 5.15.202
Linux Linux Kernel	From 5.16 to 6.1.165
Linux Linux Kernel	From 6.13 to 6.18.16
Linux Linux Kernel	From 6.19 to 6.19.6
Linux Linux Kernel	From 6.2 to 6.6.128
Linux Linux Kernel	From 6.7 to 6.12.75

Related CWEs

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (7)

https://git.kernel.org/stable/c/1de31dba19c3cd0c1caf388a286b46df638f0b91

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/33c1c6d8a28a2761ac74b0380b2563cf546c2a3a

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/8b221db0b7d24675e465e98d9326d298025a4e8d

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/9b85c8f624b0f8cf9b932f5a65dacd56a1f47a72

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/9d0ca11258e7b452653d04310addfec1753de1a2

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/b265e53d9adfbb5751713185843f7188aa9dd066

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/ca46d2092f307385a7acfb42632056570d6dbbbc

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

Timeline

No history available yet.