High severity7.8NVD Advisory· Published May 6, 2026· Updated May 20, 2026
CVE-2026-43078
CVE-2026-43078
Description
In the Linux kernel, the following vulnerability has been resolved:
crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl
When page reassignment was added to af_alg_pull_tsgl the original loop wasn't updated so it may try to reassign one more page than necessary.
Add the check to the reassignment so that this does not happen.
Also update the comment which still refers to the obsolete offset argument.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=4.14.1,<5.10.254
- cpe:2.3:o:linux:linux_kernel:4.14:-:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
8- git.kernel.org/stable/c/2b781d1d4f933990318bcc5c68fb75a717379e42nvdPatch
- git.kernel.org/stable/c/31d00156e50ecad37f2cb6cbf04aaa9a260505efnvdPatch
- git.kernel.org/stable/c/710a4ce5d7afd9fe082c75dec282ab4a11c0fe71nvdPatch
- git.kernel.org/stable/c/9532501e0f1b200ea80baa0e33e0b06da10bb271nvdPatch
- git.kernel.org/stable/c/c8369a6d62f5abde9cbd4b62c45bf4b996be2468nvdPatch
- git.kernel.org/stable/c/dea5fcf085f977b6c2de1b2d4ec4767b6c840d1fnvdPatch
- git.kernel.org/stable/c/f7826bc0b39928a4a22f6b815dd9940b22a63503nvdPatch
- git.kernel.org/stable/c/fa48d3ea9cdbfb28c1fd6756c6c5cd01351aa51envdPatch
News mentions
0No linked articles in our index yet.