CVE-2026-43241
Published: May 9, 2026Last modified: May 9, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix array-index-out-of-bounds access Number of MW LUTs depends on NTB configuration and can be set to MAX_MWS, This patch protects against invalid index out of bounds access to mw_sizes When invalid access print message to user that configuration is not valid.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 7.1 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | HIGH |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.167-r0) |
| 25 LTS | linux-lts | Fixed (6.12.80-r0) | |
| Stream | linux-lts | Fixed (6.12.76-r0) |
References
- https://git.kernel.org/stable/c/0e930420945106151c6eb3d7837b4e6154e9b144
- https://git.kernel.org/stable/c/2346856b74823a2a78109002e479a3d02526a9ce
- https://git.kernel.org/stable/c/348e1ac9ad983ed7e62de14e1daf47f1695a4ce9
- https://git.kernel.org/stable/c/47ce292dd45dc689747c40603222691638919189
- https://git.kernel.org/stable/c/740945de896021b9a859e71f38f6aea72a6393cf
- https://git.kernel.org/stable/c/85c9daa1f8319bbb3dfee71dc6a2f969cd3b4c92
- https://git.kernel.org/stable/c/c8ba7ad2cc1c7b90570aa347b8ebbe279f1eface
- https://git.kernel.org/stable/c/ee02c4f980c91820845dd8e469ec7dc670ab6d9d