CVE-2026-43297

Source
https://cve.org/CVERecord?id=CVE-2026-43297
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43297.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-43297
Downstream
Published
2026-05-08T13:11:19.530Z
Modified
2026-06-18T03:55:48.504151472Z
Summary
media: rockchip: rga: Fix possible ERR_PTR dereference in rga_buf_init()
Details

In the Linux kernel, the following vulnerability has been resolved:

media: rockchip: rga: Fix possible ERRPTR dereference in rgabuf_init()

rgagetframe() can return ERRPTR(-EINVAL) when buffer type is unsupported or invalid. rgabuf_init() does not check the return value and unconditionally dereferences the pointer when accessing f->size.

Add proper ERR_PTR checking and return the error to prevent dereferencing an invalid pointer.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43297.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6040702ade234c8212dcfdef85e2f5549aa2f0f5
Fixed
5da29ade540b51763b950987bd410add7edaf3d1
Fixed
1af2853b4e97fd95262fdef311b2334337069bc9
Fixed
aa22221c5dc695a3d479e1e1b63f0c0e9eb29dbf
Fixed
81f8e0e6a2e115df9274d0289779f8fca694479c

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43297.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.8.0
Fixed
6.12.75
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.16
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.6

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43297.json"