Type Confusion in Linux kernel - CVE-2026-43062
Published: May 6, 2026
Vulnerability identifier: #VU130226
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2026-43062
CWE-ID: CWE-843
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Linux Foundation
Affected software:
Linux kernel
Linux kernel
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to type confusion in l2cap_ecred_reconf_rsp() when processing L2CAP_ECRED_RECONF_RSP packets. A remote attacker can send a specially crafted packet to cause a denial of service.
The issue causes valid packets to be rejected and may read the result field from an incorrect offset when the packet is large enough to pass the length check.
How to mitigate CVE-2026-43062
Install security update from vendor's repository.
Sources
- https://git.kernel.org/stable/c/111f74547eee8cfedfb854284e80f35c8a491186
- https://git.kernel.org/stable/c/15145675690cab2de1056e7ed68e59cbd0452529
- https://git.kernel.org/stable/c/21d3ba696918d6373233aac0b9d51fcabdedddc0
- https://git.kernel.org/stable/c/3b94e62caa1dc1198d0d55d97bd710da1dee15d7
- https://git.kernel.org/stable/c/5a1ea296f8589ce8f1e3141b2b123b34ad010e19
- https://git.kernel.org/stable/c/d90150c72d2e6a8a3079e88755dafcfbe91c746d
- https://git.kernel.org/stable/c/dd3b221e21079ade8263fbb7176f3d55ad75d3b6
- https://git.kernel.org/stable/c/f110b8f58b254bf997cec1bd60701b7798e9bb82