CVE-2026-43038 - Vulnerability Analysis
CriticalCVSS: 9.8Last Updated: May 3, 2026
Linux Kernel - Memory Corruption
Published: May 1, 2026Updated: May 3, 2026Remote Exploitable
Overview
Linux kernel contains a memory corruption vulnerability caused by improper clearing of skb2->cb[] in ip6_err_gen_icmpv6_unreach(), letting remote attackers craft forged ICMPv4 error packets with CIPSO IP options to cause out-of-bounds memory access, exploit requires sending specially crafted ICMPv4 packets.
Severity & Score
Severity: Critical
CVSS Score: 9.8
Impact
Remote attackers can cause out-of-bounds memory access, potentially leading to kernel memory corruption or denial of service.
Mitigation
Update to the latest Linux kernel version containing the patch that clears skb2->cb[] in ip6_err_gen_icmpv6_unreach()
References
- https://git.kernel.org/stable/c/3d5127d998de617b130aae96b138dba22ac6a8a7
- https://git.kernel.org/stable/c/86ab3e55673a7a49a841838776f1ab18d23a67b5
- https://git.kernel.org/stable/c/a2edbb6393972a02114b6003953a5cef3104fada
- https://git.kernel.org/stable/c/a4437faf135da293d16fcc4cc607316742bd0ebb
- https://git.kernel.org/stable/c/c438ba010171b70bad22fc18b1d5bdc3627476e8
- https://git.kernel.org/stable/c/e41953e7d118e2702bcb217879c173d9d1d3cd4e
- https://git.kernel.org/stable/c/0452b6526b2f54b2413b9cb4ff1ea2ac542c99c7
- https://git.kernel.org/stable/c/1ceeebd5bd6d855b17a5df625109bfe29129d7cf
Related Resources
Details
- CVE ID
- CVE-2026-43038
- Severity
- Critical
- CVSS Score
- 9.8
- Type
- undefined
- Status
- unconfirmed
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H