Medium severity4.7NVD Advisory· Published May 6, 2026· Updated May 13, 2026
CVE-2026-43163
CVE-2026-43163
Description
In the Linux kernel, the following vulnerability has been resolved:
md/bitmap: fix GPF in write_page caused by resize race
A General Protection Fault occurs in write_page() during array resize: RIP: 0010:write_page+0x22b/0x3c0 [md_mod]
This is a use-after-free race between bitmap_daemon_work() and __bitmap_resize(). The daemon iterates over bitmap->storage.filemap without locking, while the resize path frees that storage via md_bitmap_file_unmap(). quiesce() does not stop the md thread, allowing concurrent access to freed pages.
Fix by holding mddev->bitmap_info.mutex during the bitmap update.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
77- osv-coords75 versionspkg:rpm/almalinux/bpftoolpkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-64kpkg:rpm/almalinux/kernel-64k-corepkg:rpm/almalinux/kernel-64k-debugpkg:rpm/almalinux/kernel-64k-debug-corepkg:rpm/almalinux/kernel-64k-debug-develpkg:rpm/almalinux/kernel-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-64k-debug-modulespkg:rpm/almalinux/kernel-64k-debug-modules-corepkg:rpm/almalinux/kernel-64k-debug-modules-extrapkg:rpm/almalinux/kernel-64k-develpkg:rpm/almalinux/kernel-64k-devel-matchedpkg:rpm/almalinux/kernel-64k-modulespkg:rpm/almalinux/kernel-64k-modules-corepkg:rpm/almalinux/kernel-64k-modules-extrapkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-corepkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-debug-uki-virtpkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-corepkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-64kpkg:rpm/almalinux/kernel-rt-64k-corepkg:rpm/almalinux/kernel-rt-64k-debugpkg:rpm/almalinux/kernel-rt-64k-debug-corepkg:rpm/almalinux/kernel-rt-64k-debug-develpkg:rpm/almalinux/kernel-rt-64k-debug-modulespkg:rpm/almalinux/kernel-rt-64k-debug-modules-corepkg:rpm/almalinux/kernel-rt-64k-debug-modules-extrapkg:rpm/almalinux/kernel-rt-64k-develpkg:rpm/almalinux/kernel-rt-64k-modulespkg:rpm/almalinux/kernel-rt-64k-modules-corepkg:rpm/almalinux/kernel-rt-64k-modules-extrapkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-corepkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-corepkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-uki-virtpkg:rpm/almalinux/kernel-uki-virt-addonspkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-corepkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/libperfpkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perfpkg:rpm/almalinux/rtlapkg:rpm/almalinux/rv
< 4.18.0-553.126.1.el8_10+ 74 more
- (no CPE)range: < 4.18.0-553.126.1.el8_10
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
Patches
Vulnerability mechanics
References
8- git.kernel.org/stable/c/140cc839fbeb1ddb33a8da8811b716d88d3905b7nvdPatch
- git.kernel.org/stable/c/46ef85f854dfa9d5226b3c1c46493d79556c9589nvdPatch
- git.kernel.org/stable/c/5f73c8b33df9a605a591eab72d43a969600c1f8cnvdPatch
- git.kernel.org/stable/c/9a6f8cd28bb9bb6ed86a6df19331fb08016dee7fnvdPatch
- git.kernel.org/stable/c/a437e3bf30e32846079e470c1ba5ee790bccdf89nvdPatch
- git.kernel.org/stable/c/d3af62411e19752c663fe4f424dbf49d95a4cc7cnvdPatch
- git.kernel.org/stable/c/d92b8fac294b5f915c50e65ce4ae2262e53614ecnvdPatch
- git.kernel.org/stable/c/ebcacc7ca22d5e8a03a970f0621ae1d1356b9ae8nvdPatch
News mentions
0No linked articles in our index yet.