CVE 8.8 HIGH

net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle_CVE-2026-43283

May 8, 2026 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Description

In the Linux kernel, the following vulnerability has been resolved:

net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle

dma_free_coherent() in error path takes priv->rx_buf.alloc_len as
the dma handle. This would lead to improper unmapping of the buffer.

Change the dma handle to priv->rx_buf.alloc_phys.

AI Analysis

A vulnerability in the Linux kernel's dma_free_coherent() function could lead to improper unmapping of the buffer, potentially causing a denial of service or other security issues.

Basic Information

ID CVE-2026-43283

Source Linux

Published May 6, 2026 at 11:29

Modified May 8, 2026 at 12:41

Affected Product

Vendor Linux

Product Linux

Version 6af55ff52b02d492d45db88df3e461fa51a6f753

Affected Versions Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753
Linux Linux 3.15

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Linux

Product Linux Kernel

Version 6af55ff52b02d492d45db88df3e461fa51a6f753

References

{
    "lastseen": "",
    "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: ec_bhf: Fix dma_free_coherent() dma handle\n\ndma_free_coherent() in error path takes priv->rx_buf.alloc_len as\nthe dma handle. This would lead to improper unmapping of the buffer.\n\nChange the dma handle to priv->rx_buf.alloc_phys.",
    "published": "2026-05-06T11:29:03.726Z",
    "modified": "2026-05-08T12:41:46.869Z",
    "type": "cve",
    "title": "net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle",
    "source": "Linux",
    "references": "https://git.kernel.org/stable/c/0f589ee54fd6d76d3f75e745f7f12c64cbd749e5\nhttps://git.kernel.org/stable/c/accd0599bc8e73b962247c6c6c70ca7aa1f8e8d0\nhttps://git.kernel.org/stable/c/8320727be7ff704e07c87624efc2a4a75f54b3ce\nhttps://git.kernel.org/stable/c/1e300c33ef3cc544c2b9c693778fe9490cfe9184\nhttps://git.kernel.org/stable/c/1b1371cd4032ae859838ebc74215f569987bb197\nhttps://git.kernel.org/stable/c/1b1d3c5d58a80a19d017a409aa2308162bab5bbf\nhttps://git.kernel.org/stable/c/7e54ff938bebb173822b4c38b33fc164c1cabf92\nhttps://git.kernel.org/stable/c/ffe68c3766997d82e9ccaf1cdbd47eba269c4aa2",
    "id": "CVE-2026-43283",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Linux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 6af55ff52b02d492d45db88df3e461fa51a6f753\nLinux Linux 3.15",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Linux",
    "version": "6af55ff52b02d492d45db88df3e461fa51a6f753",
    "vendor": "Linux",
    "ai_description": "A vulnerability in the Linux kernel's dma_free_coherent() function could lead to improper unmapping of the buffer, potentially causing a denial of service or other security issues.",
    "ai_severity": "High",
    "ai_vendor": "Linux",
    "ai_product": "Linux Kernel",
    "ai_version": "6af55ff52b02d492d45db88df3e461fa51a6f753",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply