CVE-2026-43295

Source
https://cve.org/CVERecord?id=CVE-2026-43295
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43295.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-43295
Downstream
Published
2026-05-08T13:11:18.226Z
Modified
2026-06-18T03:57:13.742471977Z
Summary
rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net()
Details

In the Linux kernel, the following vulnerability has been resolved:

rapidio: replace riofreenet() with kfree() in rioscanalloc_net()

When idtab allocation fails, net is not registered with rioaddnet() yet, so kfree(net) is sufficient to release the memory. Set mport->net to NULL to avoid dangling pointer.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43295.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e6b585ca6e81badeb3d42db3cc408174f2826034
Fixed
83e579c2f7f6b1706323d744833b26470049dcc2
Fixed
34a4f233df5eef5f1f113b2196142c0568b387f8
Fixed
fecf292c6691970897396190855aa38826b7104e
Fixed
649c2e853608cad0b0cba545555d168e67f094b3
Fixed
87272e3e70ec4b666885bd520ff77463c11444ef
Fixed
e5a732bfe29451e16abf9c6f07ce5948b22f3d59
Fixed
78812c4fb7ed242d5961bf1337a49070d6487c94
Fixed
666183dcdd9ad3b8156a1df7f204f728f720380f

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43295.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.6.0
Fixed
5.10.252
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.202
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.165
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.128
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.75
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.16
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.6

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43295.json"