CVE-2026-43168

Source
https://cve.org/CVERecord?id=CVE-2026-43168
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43168.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-43168
Downstream
Published
2026-05-06T11:27:44.570Z
Modified
2026-06-18T03:56:26.813817263Z
Summary
ocfs2: fix reflink preserve cleanup issue
Details

In the Linux kernel, the following vulnerability has been resolved:

ocfs2: fix reflink preserve cleanup issue

commit c06c303832ec ("ocfs2: fix xattr array entry __countedby error") doesn't handle all cases and the cleanup job for preserved xattr entries still has bug: - the 'last' pointer should be shifted by one unit after cleanup an array entry. - current code logic doesn't cleanup the first entry when xhcount is 1.

Note, commit c06c303832ec is also a bug fix for 0fe9b66c65f3.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43168.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0fe9b66c65f3ff227da45381afe7612f91e32740
Fixed
c44d86ca949cb1e5566ad14510cc26fa1a17e2d8
Fixed
02acc9f72365e50eb45a56b7dacb9114ca3b503c
Fixed
8ff329353134280b203cb2bce95311cb8f7cbd8a
Fixed
bb273b68c1719c2925e05557f7e7099edb066680
Fixed
b2952dbeac2c3c527cb0519d5ffaeb95b062466a
Fixed
3bdc3766aafb052aef4baadef455a84c1c0a059d
Fixed
2f4daccd9d9b8b2952df7878df8c2e8ba6439398
Fixed
5138c936c2c82c9be8883921854bc6f7e1177d8c

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43168.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.32
Fixed
5.10.252
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.202
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.165
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.128
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.75
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.16
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.6

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43168.json"