Description
In the Linux kernel, the following vulnerability has been resolved:

erofs: fix incorrect early exits for invalid metabox-enabled images

Crafted EROFS images with metadata compression enabled can trigger
incorrect early returns, leading to folio reference leaks.

However, this does not cause system crashes or other severe issues.
Published: 2026-05-06
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw in the Linux erofs filesystem handling caused early exits when processing invalid metabox‑enabled images with metadata compression enabled, leading to folio reference leaks. The leaked references reveal memory addresses, enabling potential information disclosure and may aid attackers in exploiting other weaknesses (CWE‑911). The issue does not trigger a crash or other severe instability, but the leakage provides a possible vector for attackers seeking kernel memory visibility that could facilitate further exploitation.

Affected Systems

All versions of the Linux kernel that use the erofs filesystem before the patch are potentially affected. No specific kernel releases are listed, meaning any distribution kernel embodying the unpatched code may be vulnerable.

Risk and Exploitability

The CVSS score is 5.5, reflecting a moderate impact. The EPSS score is <1% and the vulnerability is not listed in CISA KEV. An attacker would need to craft a malicious EROFS image with compressed metadata and deliver it to a system that mounts or inspects that image, so the threat is primarily local or privileged rather than remote. While the impact is limited to memory reference disclosure, the potential for leaking kernel address space could aid further exploitation if combined with other weaknesses.

Generated by OpenCVE AI on May 12, 2026 at 22:15 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a version that includes the erofs fix committed in the references provided
  • Avoid using metadata compression on erofs images unless they are from verified sources
  • If a kernel update cannot be applied immediately, refrain from mounting untrusted erofs filesystems until the patch is deployed

Generated by OpenCVE AI on May 12, 2026 at 22:15 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 12 May 2026 20:00:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

Thu, 07 May 2026 04:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-911
References

Wed, 06 May 2026 14:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200

Wed, 06 May 2026 12:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits for invalid metabox-enabled images Crafted EROFS images with metadata compression enabled can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system crashes or other severe issues.
Title erofs: fix incorrect early exits for invalid metabox-enabled images
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:19:22.391Z

Reserved: 2026-05-01T14:12:55.991Z

Link: CVE-2026-43179

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-06T12:16:36.417

Modified: 2026-05-12T19:48:29.533

Link: CVE-2026-43179

cve-icon Redhat

Severity :

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43179 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-12T22:30:05Z

Weaknesses