CVE-2026-43149
Published: May 9, 2026Last modified: May 9, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean() The priv->rx_buffer and priv->tx_buffer are alloc'd together as contiguous buffers in uhdlc_init() but freed as two buffers in uhdlc_memclean(). Change the cleanup to only call dma_free_coherent() once on the whole buffer.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.167-r0) |
| 25 LTS | linux-lts | Fixed (6.12.80-r0) | |
| Stream | linux-lts | Fixed (6.12.76-r0) |
References
- https://git.kernel.org/stable/c/011ae5dd84dc9f05eb9b8e1adff44252ac776e7b
- https://git.kernel.org/stable/c/0f85a9655445e67bb0238cfc983d7c383b54938e
- https://git.kernel.org/stable/c/36bd7d5deef936c4e1e3cd341598140e5c14c1d3
- https://git.kernel.org/stable/c/6496fb830cbb741d831225cc4e7e5601c6e42970
- https://git.kernel.org/stable/c/84b932bc9899d43e5829e6cf088b72d73a922b2b
- https://git.kernel.org/stable/c/ba8d8429e5d6c36f9a654d2b96b9e043c43d92b4
- https://git.kernel.org/stable/c/d68994e37ac3b285692559776e0279a88a3b5f8d
- https://git.kernel.org/stable/c/d8a522085d09b30aba1016daf1dddac37c0f0285