CVE-2026-43211— Linux kernel 安全漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2026-43211の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
PCI: Fix pci_slot_trylock() error handling
ソース: NVD (National Vulnerability Database)
脆弱性説明
In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_slot_trylock() error handling Commit a4e772898f8b ("PCI: Add missing bridge lock to pci_bus_lock()") delegates the bridge device's pci_dev_trylock() to pci_bus_trylock() in pci_slot_trylock(), but it forgets to remove the corresponding pci_dev_unlock() when pci_bus_trylock() fails. Before a4e772898f8b, the code did: if (!pci_dev_trylock(dev)) /* <- lock bridge device */ goto unlock; if (dev->subordinate) { if (!pci_bus_trylock(dev->subordinate)) { pci_dev_unlock(dev); /* <- unlock bridge device */ goto unlock; } } After a4e772898f8b the bridge-device lock is no longer taken, but the pci_dev_unlock(dev) on the failure path was left in place, leading to the bug. This yields one of two errors: 1. A warning that the lock is being unlocked when no one holds it. 2. An incorrect unlock of a lock that belongs to another thread. Fix it by removing the now-redundant pci_dev_unlock(dev) on the failure path. [Same patch later posted by Keith at https://patch.msgid.link/20260116184150.3013258-1-kbusch@meta.com]
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Linux kernel 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于pci_slot_trylock函数错误处理路径未移除冗余解锁,可能导致锁错误。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
II. CVE-2026-43211の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2026-43211のインテリジェンス情報
请登录查看更多情报信息。
Same Patch Batch · Linux · 2026-05-06 · 225 CVEs total
| CVE-2026-43186 | 9.8 CRITICAL | ipv6: ioam: fix heap buffer overflow in __ioam6_fill_trace_data() |
| CVE-2026-43185 | 9.8 CRITICAL | ksmbd: fix signededness bug in smb_direct_prepare_negotiation() |
| CVE-2026-43198 | 9.8 CRITICAL | tcp: fix potential race in tcp_v6_syn_recv_sock() |
| CVE-2026-43208 | 9.8 CRITICAL | net: do not pass flow_id to set_rps_cpu() |
| CVE-2026-43125 | 9.8 CRITICAL | dlm: validate length in dlm_search_rsb_tree |
| CVE-2026-43114 | 9.4 CRITICAL | netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry |
| CVE-2026-43197 | 9.1 CRITICAL | netconsole: avoid OOB reads, msg is not nul-terminated |
| CVE-2026-43117 | 9.1 CRITICAL | btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() |
| CVE-2026-43083 | 9.1 CRITICAL | net: ioam6: fix OOB and missing lock |
| CVE-2026-43187 | 8.8 HIGH | xfs: delete attr leaf freemap entries when empty |
| CVE-2026-43283 | 8.8 HIGH | net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle |
| CVE-2026-43239 | 8.8 HIGH | smb: client: prevent races in ->query_interfaces() |
| CVE-2026-43215 | 8.8 HIGH | cifs: Fix locking usage for tcon fields |
| CVE-2026-43158 | 8.8 HIGH | xfs: fix freemap adjustments when adding xattrs to leaf blocks |
| CVE-2026-43232 | 8.8 HIGH | net: wan: farsync: Fix use-after-free bugs caused by unfinished tasklets |
| CVE-2026-43112 | 8.8 HIGH | fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath |
| CVE-2026-43113 | 8.8 HIGH | wifi: wl1251: validate packet IDs before indexing tx_frames |
| CVE-2026-43110 | 8.8 HIGH | wifi: brcmfmac: validate bsscfg indices in IF events |
| CVE-2026-43172 | 8.8 HIGH | wifi: iwlwifi: fix 22000 series SMEM parsing |
| CVE-2026-43176 | 8.8 HIGH | wifi: rtw89: pci: validate release report content before using for RTL8922DE |
Showing 20 of 225 CVEs. View all on vendor page →
IV. 関連脆弱性
同じ製品: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
同じベンダー: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
V. CVE-2026-43211へのコメント
まだコメントはありません