CVE-2026-43160 - Vulnerability Details

Description

In the Linux kernel, the following vulnerability has been resolved:

mfd: macsmc: Initialize mutex

Initialize struct apple_smc's mutex in apple_smc_probe(). Using the
mutex uninitialized surprisingly resulted only in occasional NULL
pointer dereferences in apple_smc_read() calls from the probe()
functions of sub devices.

Published: 2026-05-06

Score: 5.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The Apple SMC driver contains an uninitialized mutex created in apple_smc_probe(). This mutex is accessed in apple_smc_read() during device probe, occasionally leading to a null pointer dereference. The impact of this dereference is not explicitly stated, but could cause device instability or function failure. Additional referenced weaknesses (CWE-908, CWE-909) indicate potential failure to guard against misuse of internal data and a lack of proper error handling. Based on the description, the likely attack vector is local privileged code execution that can trigger the Apple SMC driver’s probe sequence, resulting in the null pointer dereference.

Affected Systems

All Linux kernel builds that include the Apple SMC driver before the patch that initializes the mutex are affected. No version ranges are specified; therefore any kernel incorporating the uninitialized mutex code in the macsmc module is considered vulnerable.

Risk and Exploitability

The CVSS score of 5.5 classifies the issue as moderate severity, while the EPSS score of <1% indicates a very low likelihood of exploitation. The vulnerability is not listed in CISA KEV. Based on the description, the likely attack vector is local privileged code execution that interacts with the Apple SMC driver during probing, making the attack vector local. The impact of the null pointer dereference is not explicitly detailed, but it could result in device instability or function failure.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`e038d985c9823a12cd64fa077d0c5aca2c644b67`	affected	< a1e9e299c0d9ea42ab1067b39fb72e976d3f1bdb
`e038d985c9823a12cd64fa077d0c5aca2c644b67`	affected	< 2d5932588f029f7787f52c29174fead9bbc6b2cf
`e038d985c9823a12cd64fa077d0c5aca2c644b67`	affected	< 414f65d6736342c77d4ec5e7373039f4a09250dd

Linux

affected

Version	Status	Constraints
`6.17`	affected	—
`0`	unaffected	< 6.17
`6.18.16`	unaffected	≤ 6.18.*
`6.19.6`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[e038d985c9823a12cd64fa077d0c5aca2c644b67,a1e9e299c0d9ea42ab1067b39fb72e976d3f1bdb)`	affected	code_commit	—
`[e038d985c9823a12cd64fa077d0c5aca2c644b67,2d5932588f029f7787f52c29174fead9bbc6b2cf)`	affected	code_commit	—
`[e038d985c9823a12cd64fa077d0c5aca2c644b67,414f65d6736342c77d4ec5e7373039f4a09250dd)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`6.17`	affected	semver	—
`[0,6.17)`	unaffected	semver	—
`[6.18.16,6.19.0)`	unaffected	semver	—
`[6.19.6,6.20.0)`	unaffected	semver	—
`[0,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade your Linux kernel to a release that incorporates the Apple SMC mutex initialization fix (e.g., the latest stable kernel version).
If you compile a custom kernel, rebuild the mfd:macsmc driver from the latest source tree or apply the patch that initializes the mutex in probe().
As an interim measure, disable the Apple SMC module (blacklist macsmc or remove the driver) to prevent null pointer dereferences until a patch is available.

Generated by OpenCVE AI on May 14, 2026 at 01:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00013.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/2d5932588f029f7787f52c29174fead9bbc6b2cf
https://git.kernel.org/stable/c/414f65d6736342c77d4ec5e7373039f4a09250dd
https://git.kernel.org/stable/c/a1e9e299c0d9ea42ab1067b39fb72e976d3f1bdb
https://lore.kernel.org/linux-cve-announce/2026050631-CVE-2026-43160-163c@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-43160
https://www.cve.org/CVERecord?id=CVE-2026-43160

History

Thu, 14 May 2026 00:30:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-476 CWE-665

Wed, 13 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-908
Metrics		cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}`

Thu, 07 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-909
References		https://lore.kernel.org/linux-cve-announce/2026050631-CVE-2026-43160-163c@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-43160 https://www.cve.org/CVERecord?id=CVE-2026-43160

Wed, 06 May 2026 14:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-476 CWE-665

Wed, 06 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: mfd: macsmc: Initialize mutex Initialize struct apple_smc's mutex in apple_smc_probe(). Using the mutex uninitialized surprisingly resulted only in occasional NULL pointer dereferences in apple_smc_read() calls from the probe() functions of sub devices.
Title		mfd: macsmc: Initialize mutex
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/2d5932588f029f7787f52c29174fead9bbc6b2cf https://git.kernel.org/stable/c/414f65d6736342c77d4ec5e7373039f4a09250dd https://git.kernel.org/stable/c/a1e9e299c0d9ea42ab1067b39fb72e976d3f1bdb

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T11:27:39.223Z

Updated: 2026-05-11T22:18:55.379Z

Reserved: 2026-05-01T14:12:55.990Z

Link: CVE-2026-43160

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2026-05-06T12:16:33.997

Modified: 2026-05-13T21:20:17.603

Link: CVE-2026-43160

Redhat

Severity :

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43160 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-14T01:30:08Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object