CVE-2026-43248

UNKNOWN 0.0

vhost: move vdpa group bound check to vhost_vdpa

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhost_vdpa Remove duplication by consolidating these here. This reduces the posibility of a parent driver missing them. While we're at it, fix a bug in vdpa_sim where a valid ASID can be assigned to a group equal to ngroups, causing an out of bound write.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 6, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

bda324fd037a6b0d44da5699574ce741ca161bc4 < ddb57354634b6ba851b79da45f1de42c646f27d0 bda324fd037a6b0d44da5699574ce741ca161bc4 < 7441d35d14d9a3d66d925d90cb73c75394e6d454 bda324fd037a6b0d44da5699574ce741ca161bc4 < 406db68f9cb976a8ddfafd631197264f2307e9c9 bda324fd037a6b0d44da5699574ce741ca161bc4 < cd025c1e876b4e262e71398236a1550486a73ede

Linux / Linux

5.19

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/ddb57354634b6ba851b79da45f1de42c646f27d0 git.kernel.org: https://git.kernel.org/stable/c/7441d35d14d9a3d66d925d90cb73c75394e6d454 git.kernel.org: https://git.kernel.org/stable/c/406db68f9cb976a8ddfafd631197264f2307e9c9 git.kernel.org: https://git.kernel.org/stable/c/cd025c1e876b4e262e71398236a1550486a73ede