CVE-2026-43157 - Vulnerability Details

- octeontx2-af: CGX: fix bitmap leaks

Description

In the Linux kernel, the following vulnerability has been resolved:

octeontx2-af: CGX: fix bitmap leaks

The RX/TX flow-control bitmaps (rx_fc_pfvf_bmap and tx_fc_pfvf_bmap)
are allocated by cgx_lmac_init() but never freed in cgx_lmac_exit().
Unbinding and rebinding the driver therefore triggers kmemleak:

unreferenced object (size 16):
backtrace:
rvu_alloc_bitmap
cgx_probe

Free both bitmaps during teardown.

Published: 2026-05-06

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The octeontx2-af CGX driver allocates RX/TX flow‑control bitmaps during initialization but fails to free them during exit, causing a persistent memory leak that is reported by the kernel’s kmemleak detector. This leak means that each time the driver is unbound and rebound, 16-byte objects remain resident in memory, potentially leading to gradual exhaustion of available kernel memory and eventual degradation of kernel operations or system instability.

Affected Systems

The vulnerability affects the octeontx2-af CGX driver component within the Linux kernel. No specific kernel release or version information is provided in the data, so any instance of this driver on a Linux system may be impacted.

Risk and Exploitability

Because the defect is triggered only when the driver is unbound and rebound, the attack vector is local and requires the ability to load or unload the driver. The EPSS score is not available and the CVE is not listed in CISA KEV, indicating that there are no known public exploits at this time. The vulnerability can lead to a denial‑of‑service scenario through memory exhaustion but does not provide an execution path for arbitrary code. The risk is moderate, with the primary concern being potential instability from unbounded memory usage.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`e740003874edc13e468d19233f99787bedb4bb8e`	affected	< ad8a13a45c5c24d0d32de9a1c3fd58498a675ece
`e740003874edc13e468d19233f99787bedb4bb8e`	affected	< 013ac469596a0b8671e62d89c89ae0bd46bbe667
`e740003874edc13e468d19233f99787bedb4bb8e`	affected	< ccef79af58b43787c25710c9da96651c6ddfe50f
`e740003874edc13e468d19233f99787bedb4bb8e`	affected	< 6d389382ee655128056fbdab86baad8495ffbf33
`e740003874edc13e468d19233f99787bedb4bb8e`	affected	< ccca14bbdcc25829d355b9f4d3249f43dadb71c1
`e740003874edc13e468d19233f99787bedb4bb8e`	affected	< 3def995c4ede842adf509c410e92d09a0cedc965

Linux

affected

Version	Status	Constraints
`5.18`	affected	—
`0`	unaffected	< 5.18
`6.1.165`	unaffected	≤ 6.1.*
`6.6.128`	unaffected	≤ 6.6.*
`6.12.75`	unaffected	≤ 6.12.*
`6.18.16`	unaffected	≤ 6.18.*
`6.19.6`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the Linux kernel to a version that includes the patch that frees the RX/TX flow‑control bitmaps during driver teardown.
Reboot the system after applying the update to ensure the corrected driver is loaded and the leak is eliminated.
After reboot, confirm that the driver loads and unloads without generating kmemleak messages and that kernel memory usage remains stable.

Generated by OpenCVE AI on May 6, 2026 at 13:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/013ac469596a0b8671e62d89c89ae0bd46bbe667
https://git.kernel.org/stable/c/3def995c4ede842adf509c410e92d09a0cedc965
https://git.kernel.org/stable/c/6d389382ee655128056fbdab86baad8495ffbf33
https://git.kernel.org/stable/c/ad8a13a45c5c24d0d32de9a1c3fd58498a675ece
https://git.kernel.org/stable/c/ccca14bbdcc25829d355b9f4d3249f43dadb71c1
https://git.kernel.org/stable/c/ccef79af58b43787c25710c9da96651c6ddfe50f

History

Wed, 06 May 2026 14:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-401

Wed, 06 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: CGX: fix bitmap leaks The RX/TX flow-control bitmaps (rx_fc_pfvf_bmap and tx_fc_pfvf_bmap) are allocated by cgx_lmac_init() but never freed in cgx_lmac_exit(). Unbinding and rebinding the driver therefore triggers kmemleak: unreferenced object (size 16): backtrace: rvu_alloc_bitmap cgx_probe Free both bitmaps during teardown.
Title		octeontx2-af: CGX: fix bitmap leaks
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/013ac469596a0b8671e62d89c89ae0bd46bbe667 https://git.kernel.org/stable/c/3def995c4ede842adf509c410e92d09a0cedc965 https://git.kernel.org/stable/c/6d389382ee655128056fbdab86baad8495ffbf33 https://git.kernel.org/stable/c/ad8a13a45c5c24d0d32de9a1c3fd58498a675ece https://git.kernel.org/stable/c/ccca14bbdcc25829d355b9f4d3249f43dadb71c1 https://git.kernel.org/stable/c/ccef79af58b43787c25710c9da96651c6ddfe50f

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T11:27:37.185Z

Updated: 2026-05-06T11:27:37.185Z

Reserved: 2026-05-01T14:12:55.990Z

Link: CVE-2026-43157

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-06T12:16:33.563

Modified: 2026-05-06T13:07:51.607

Link: CVE-2026-43157

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-06T13:45:04Z

Weaknesses

CWE-401

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object