Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix incorrect success return when vmap() fails In persistent_ram_vmap(), vmap() may return NULL on failure. If offset is non-zero, adding offset_in_page(start) causes the function to return a non-NULL pointer even though the mapping failed. persistent_ram_buffer_map() therefore incorrectly returns success. Subsequent access to prz->buffer may dereference an invalid address and cause crashes. Add proper NULL checking for vmap() failures.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 3.16.62, < 5.10.252 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/05363abc7625cf18c96e67f50673cd07f11da5e9Patch
- https://git.kernel.org/stable/c/1da904e84de608907662ad8a51ba9c571d61e003Patch
- https://git.kernel.org/stable/c/2c99326dc1c79b7ce3c8dd92929b5ce724ff70ebPatch
- https://git.kernel.org/stable/c/49918dd52615097529811d21ec6074dd02ebe77cPatch
- https://git.kernel.org/stable/c/88d5b28f63c7aac1271784e3b800ed405d1cde75Patch
- https://git.kernel.org/stable/c/8baa234181f632cabacf73e4834a910859e9fcc9Patch
- https://git.kernel.org/stable/c/8d849adfbc3e98417fb541620568db1a759ef441Patch
- https://git.kernel.org/stable/c/d47234840aeb4182ed3ee795c578b1dfa9cbd25bPatch
FAQ
What is CVE-2026-43124?
CVE-2026-43124 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix incorrect success return when vmap() fails In persistent_ram_vmap(), vmap() may return NULL on failure. If ...
How severe is CVE-2026-43124?
CVE-2026-43124 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-43124?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.