CVE-2026-43149

EUVD-2026-27710
In the Linux kernel, the following vulnerability has been resolved:

net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean()

The priv->rx_buffer and priv->tx_buffer are alloc'd together as
contiguous buffers in uhdlc_init() but freed as two buffers in
uhdlc_memclean().

Change the cleanup to only call dma_free_coherent() once on the whole
buffer.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 2%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
4.8 ≤
𝑥
< 5.10.252
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.202
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.165
linuxlinux_kernel
6.2 ≤
𝑥
< 6.6.128
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.75
linuxlinux_kernel
6.13 ≤
𝑥
< 6.18.16
linuxlinux_kernel
6.19 ≤
𝑥
< 6.19.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.170-3
fixed
bookworm (security)
6.1.174-1
fixed
bullseye
vulnerable
bullseye (security)
5.10.257-1
fixed
forky
7.0.12-2
fixed
sid
7.0.13-1
fixed
trixie
6.12.86-1
fixed
trixie (security)
6.12.94-1
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/011ae5dd84dc9f05eb9b8e1adff44252ac776e7b
https://git.kernel.org/stable/c/0f85a9655445e67bb0238cfc983d7c383b54938e
https://git.kernel.org/stable/c/36bd7d5deef936c4e1e3cd341598140e5c14c1d3
https://git.kernel.org/stable/c/6496fb830cbb741d831225cc4e7e5601c6e42970
https://git.kernel.org/stable/c/84b932bc9899d43e5829e6cf088b72d73a922b2b
https://git.kernel.org/stable/c/ba8d8429e5d6c36f9a654d2b96b9e043c43d92b4
https://git.kernel.org/stable/c/d68994e37ac3b285692559776e0279a88a3b5f8d
https://git.kernel.org/stable/c/d8a522085d09b30aba1016daf1dddac37c0f0285