Division by zero in Linux kernel - CVE-2026-43238
Published: May 7, 2026
Vulnerability identifier: #VU130476
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-43238
CWE-ID: CWE-369
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Linux Foundation
Affected software:
Linux kernel
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to a divide-by-zero error in tcf_skbedit_hash() when processing skbedit hash-based tx queue selection with a queue mapping range covering all possible u16 queue IDs. A local user can configure a crafted queue mapping range to cause a denial of service.
How to mitigate CVE-2026-43238
Install security update from vendor's repository.
Sources
- https://git.kernel.org/stable/c/015cebdfcb97b5347fb7f598ea712a281cb35840
- https://git.kernel.org/stable/c/3c2b95b26860bd6f8e2310d31ea1200d3f8f173e
- https://git.kernel.org/stable/c/4ece5eb4836f8ff03b9004dc2430a7169f282851
- https://git.kernel.org/stable/c/59809fda4da7730cfe84a948033f47eb45db073d
- https://git.kernel.org/stable/c/9c735a7d98c982a786b0db71eb6566ee00aaa04f
- https://git.kernel.org/stable/c/be054cc66f739a9ba615dba9012a07fab8e7dd6f