CVE-2026-43074

Source
https://cve.org/CVERecord?id=CVE-2026-43074
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43074.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-43074
Downstream
Related
Published
2026-05-06T07:21:58.210Z
Modified
2026-07-07T08:38:50.954992394Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
eventpoll: defer struct eventpoll free to RCU grace period
Details

In the Linux kernel, the following vulnerability has been resolved:

eventpoll: defer struct eventpoll free to RCU grace period

In certain situations, ep_free() in eventpoll.c will kfree the epi->ep eventpoll struct while it still being used by another concurrent thread. Defer the kfree() to an RCU callback to prevent UAF.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43074.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f2451def095c1743adcfcb0cb5dadc86034e162a
Fixed
902120be4f44947df6311002addc7faf69bdbff1
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
a1f93804449d13f97dabd4b996817de4bf1ed67a
Fixed
a6d57084372161f86660bc4607784420e00efe2c
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
58c9b016e12855286370dfb704c08498edbc857a
Fixed
a6566cd33f6f967a7651ebf2ce0dd31572e319cf
Fixed
5b1173b165421561db29f30afc7e97d940a398a9
Fixed
7e8083f5eeedab0f460063b9c2c14c9a4e71a427
Fixed
ae0bb9c1fb7c2594519aeeb096cf2c3b7837b322
Fixed
07712db80857d5d09ae08f3df85a708ecfc3b61f

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43074.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.4.0
Fixed
6.6.136
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.83
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.24
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.14

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43074.json"