CVE-2026-43125
- Source
- https://cve.org/CVERecord?id=CVE-2026-43125
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43125.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-43125
- Downstream
- Related
- Published
- 2026-05-06T11:27:10.903Z
- Modified
- 2026-06-11T19:14:22.478423321Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- dlm: validate length in dlm_search_rsb_tree
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
dlm: validate length in dlmsearchrsb_tree
The len parameter in dlmdumprsbname() is not validated and comes from network messages. When it exceeds DLMRESNAMEMAXLEN, it can cause out-of-bounds write in dlmsearchrsbtree().
Add length validation to prevent potential buffer overflow.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43125.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/080e5563f878c64e697b89e7439d730d0daad882
- https://git.kernel.org/stable/c/082083c9fbd99422a0370fe2102144a231c9f5d6
- https://git.kernel.org/stable/c/5f053a2e7209d326cbbc07738fa6d6893d307438
- https://git.kernel.org/stable/c/67288113c5e6cf9e659b4065c0ed6f16100e0c71
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43125.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-43125
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7210cb7a72a22303cdb225bd1aea28697a17bbaeFixed67288113c5e6cf9e659b4065c0ed6f16100e0c71Fixed082083c9fbd99422a0370fe2102144a231c9f5d6Fixed5f053a2e7209d326cbbc07738fa6d6893d307438Fixed080e5563f878c64e697b89e7439d730d0daad882