CVE-2026-43125

Summary

In the Linux kernel, the following vulnerability has been resolved:

dlm: validate length in dlm_search_rsb_tree

The len parameter in dlm_dump_rsb_name() is not validated and comes from network messages. When it exceeds DLM_RESNAME_MAXLEN, it can cause out-of-bounds write in dlm_search_rsb_tree().

Add length validation to prevent potential buffer overflow.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7210cb7a72a22303cdb225bd1aea28697a17bbae < 67288113c5e6cf9e659b4065c0ed6f16100e0c71affected
LinuxLinux7210cb7a72a22303cdb225bd1aea28697a17bbae < 082083c9fbd99422a0370fe2102144a231c9f5d6affected
LinuxLinux7210cb7a72a22303cdb225bd1aea28697a17bbae < 5f053a2e7209d326cbbc07738fa6d6893d307438affected
LinuxLinux7210cb7a72a22303cdb225bd1aea28697a17bbae < 080e5563f878c64e697b89e7439d730d0daad882affected
LinuxLinux3.4affected
LinuxLinux0 < 3.4unaffected
LinuxLinux6.12.75 <= 6.12.*unaffected
LinuxLinux6.18.16 <= 6.18.*unaffected
LinuxLinux6.19.6 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

ADP Enrichment

kernel: dlm: validate length in dlm_search_rsb_tree

Additional References

References