CVE-2026-43179

Summary

In the Linux kernel, the following vulnerability has been resolved:

erofs: fix incorrect early exits for invalid metabox-enabled images

Crafted EROFS images with metadata compression enabled can trigger incorrect early returns, leading to folio reference leaks.

However, this does not cause system crashes or other severe issues.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux414091322c6363c9283aeb177101e4d7a3819ccd < 041b5163bb9b2e81050bcd885b3373bf2f42d5f5affected
LinuxLinux414091322c6363c9283aeb177101e4d7a3819ccd < 56e4a84220045b6af0f1efc11825b39217c7decfaffected
LinuxLinux414091322c6363c9283aeb177101e4d7a3819ccd < 643575d5a4f24b23b0c54aa20aa74a4abed8ff5eaffected
LinuxLinux6.17affected
LinuxLinux0 < 6.17unaffected
LinuxLinux6.18.16 <= 6.18.*unaffected
LinuxLinux6.19.6 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References