CVE-2026-43358

Published: May 8, 2026Modified: May 15, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer() Call rcu_read_lock() before exiting the loop in try_release_subpage_extent_buffer() because there is a rcu_read_unlock() call past the loop. This has been detected by the Clang thread-safety analyzer.

Affected (13)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 6.16.4 to 6.17
Linux Linux Kernel	From 6.17.1 to 6.18.19
Linux Linux Kernel	From 6.19 to 6.19.9
Linux Linux Kernel	Version 6.17
Linux Linux Kernel	Version 6.17 rc2
Linux Linux Kernel	Version 6.17 rc3
Linux Linux Kernel	Version 6.17 rc4
Linux Linux Kernel	Version 6.17 rc5
Linux Linux Kernel	Version 6.17 rc6
Linux Linux Kernel	Version 6.17 rc7
Linux Linux Kernel	Version 7.0 rc1
Linux Linux Kernel	Version 7.0 rc2
Linux Linux Kernel	Version 7.0 rc3

References (3)

https://git.kernel.org/stable/c/35b0c8768e848e1b7e32052db36b5fa59b6a33a1

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/5e1ab71f74a1e61f1254dff128a764fdebaec0b8

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/b2840e33127ce0eea880504b7f133e780f567a9b

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

Timeline

No history available yet.