Description
In the Linux kernel, the following vulnerability has been resolved:

powerpc/smp: Add check for kcalloc() failure in parse_thread_groups()

As kcalloc() may fail, check its return value to avoid a NULL pointer
dereference when passing it to of_property_read_u32_array().
Published: 2026-05-06
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from a missing check for a failed kcalloc() call in the parse_thread_groups function on PowerPC SMP systems. When kcalloc() returns NULL, the subsequent of_property_read_u32_array() call dereferences the pointer, causing a kernel panic. This results in a complete loss of system availability for the affected node.

Affected Systems

The flaw exists in the Linux kernel code that targets PowerPC architectures with SMP support enabled. Versions of the kernel that have not incorporated the commit adding the null‑pointer check remain vulnerable; specific kernel releases are not enumerated in the advisory, indicating the issue applies to any unpatched PowerPC SMP kernel.

Risk and Exploitability

The attack requires privileged local access, typically during system boot or when a device tree is parsed. The likely attack vector is a local attacker triggering device tree parsing while having sufficient privileges. The CVSS score is 5.5, indicating medium severity. The EPSS score is not available, and the issue is not listed in the CISA KEV catalog. Successful exploitation would lead to an immediate kernel crash and denial of service.

Generated by OpenCVE AI on May 7, 2026 at 01:54 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a revision that includes the null‑pointer check for kcalloc() in parse_thread_groups
  • Reboot the system so the patched kernel takes effect
  • If compiling the kernel yourself, rebuild the SMP configuration after applying the commit that adds the check

Generated by OpenCVE AI on May 7, 2026 at 01:54 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low

Wed, 06 May 2026 16:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-476

Wed, 06 May 2026 12:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: powerpc/smp: Add check for kcalloc() failure in parse_thread_groups() As kcalloc() may fail, check its return value to avoid a NULL pointer dereference when passing it to of_property_read_u32_array().
Title powerpc/smp: Add check for kcalloc() failure in parse_thread_groups()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:18:41.424Z

Reserved: 2026-05-01T14:12:55.989Z

Link: CVE-2026-43148

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-06T12:16:32.417

Modified: 2026-05-13T20:15:47.247

Link: CVE-2026-43148

cve-icon Redhat

Severity : Low

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43148 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T02:00:18Z

Weaknesses