CVE-2026-43230 - Vulnerability Details

- net/rds: Clear reconnect pending bit

Description

In the Linux kernel, the following vulnerability has been resolved:

net/rds: Clear reconnect pending bit

When canceling the reconnect worker, care must be taken to reset the
reconnect-pending bit. If the reconnect worker has not yet been
scheduled before it is canceled, the reconnect-pending bit will stay
on forever.

Published: 2026-05-06

Score: 7.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The flaw resides in the RDS networking stack of the Linux kernel. During the cancellation of a reconnect worker the reconnect‑pending flag is not cleared if the worker has not yet been scheduled. Consequently the flag remains set permanently, causing the kernel to believe a reconnection is always pending. This state corruption can prevent new reconnection attempts and exhaust reconnection resources, effectively blocking RDS traffic and rendering applications that depend on RDS unavailable.

Affected Systems

All Linux kernel releases that contain the RDS reconnection code prior to the incorporation of commit 14eae556 are affected. The patch was subsequently applied to current stable kernels; any running kernel lacking that commit remains vulnerable. No explicit version range is supplied, so any pre‑fix kernel should be considered at risk.

Risk and Exploitability

The CVSS score of 7.5 indicates a high severity impact, while an EPSS score of less than 1% reflects a low likelihood of exploitation in the wild. The vulnerability is not listed in the CISA KEV catalog. Exploitation would require the ability to influence the RDS protocol, typically implying local or privileged access on the host. If triggered repeatedly, the stuck internal flag could lead to a full denial of service for all RDS connections on the affected system.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< 3cf001aff71b1db1b4732a5381b012a114720664
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< 60b347333ec259ac7352f62cbbc365b04c065ff8
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< 597c46a42930c963f448720aaf5001dd4ed98af4
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< 391200c274e90c34071b909ba12e3390b81b767f
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< ba2e3472022f44baddf000621fed150d7a599ea3
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< 14eae5564053ac3973b9369dc674638f22f4765e
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< bcf034fa5f66b6a3e787f765a917934a2045cf7a
`00e0f34c616603ba6500f41943cbf89eb4a8a5be`	affected	< b89fc7c2523b2b0750d91840f4e52521270d70ed

Linux

affected

Version	Status	Constraints
`2.6.30`	affected	—
`0`	unaffected	< 2.6.30
`5.10.252`	unaffected	≤ 5.10.*
`5.15.202`	unaffected	≤ 5.15.*
`6.1.165`	unaffected	≤ 6.1.*
`6.6.128`	unaffected	≤ 6.6.*
`6.12.75`	unaffected	≤ 6.12.*
`6.18.16`	unaffected	≤ 6.18.*
`6.19.6`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,3cf001aff71b1db1b4732a5381b012a114720664)`	affected	code_commit	—
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,60b347333ec259ac7352f62cbbc365b04c065ff8)`	affected	code_commit	—
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,597c46a42930c963f448720aaf5001dd4ed98af4)`	affected	code_commit	—
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,391200c274e90c34071b909ba12e3390b81b767f)`	affected	code_commit	—
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,ba2e3472022f44baddf000621fed150d7a599ea3)`	affected	code_commit	—
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,14eae5564053ac3973b9369dc674638f22f4765e)`	affected	code_commit	—
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,bcf034fa5f66b6a3e787f765a917934a2045cf7a)`	affected	code_commit	—
`[1da177e4c3f41524e886b7f1b8a0c1fc7321cac2,b89fc7c2523b2b0750d91840f4e52521270d70ed)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[5.10.252,5.11.0)`	unaffected	semver	—
`[5.15.202,5.16.0)`	unaffected	semver	—
`[6.1.165,6.2.0)`	unaffected	semver	—
`[6.6.128,6.7.0)`	unaffected	semver	—
`[6.12.75,6.13.0)`	unaffected	semver	—
`[6.18.16,6.19.0)`	unaffected	semver	—
`[6.19.6,6.20.0)`	unaffected	semver	—
`[7.0,*]`	unaffected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the kernel update that includes the patch fixing the reconnect‑pending flag (commit 14eae556 or later).
Reboot the system or reload the networking stack to ensure the patch takes effect.
If a kernel upgrade is not immediately possible, block or disable the RDS protocol on the affected host with firewall rules or configuration changes to eliminate the denial of service risk.

Generated by OpenCVE AI on May 8, 2026 at 22:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-4606-1	linux security update

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00068.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/14eae5564053ac3973b9369dc674638f22f4765e
https://git.kernel.org/stable/c/391200c274e90c34071b909ba12e3390b81b767f
https://git.kernel.org/stable/c/3cf001aff71b1db1b4732a5381b012a114720664
https://git.kernel.org/stable/c/597c46a42930c963f448720aaf5001dd4ed98af4
https://git.kernel.org/stable/c/60b347333ec259ac7352f62cbbc365b04c065ff8
https://git.kernel.org/stable/c/b89fc7c2523b2b0750d91840f4e52521270d70ed
https://git.kernel.org/stable/c/ba2e3472022f44baddf000621fed150d7a599ea3
https://git.kernel.org/stable/c/bcf034fa5f66b6a3e787f765a917934a2045cf7a
https://lore.kernel.org/linux-cve-announce/2026050656-CVE-2026-43230-9cb4@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-43230
https://www.cve.org/CVERecord?id=CVE-2026-43230

History

Fri, 08 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Weaknesses		NVD-CWE-noinfo

Fri, 08 May 2026 13:00:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}`	cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}`

Fri, 08 May 2026 02:15:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-668

Fri, 08 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-459
References		https://lore.kernel.org/linux-cve-announce/2026050656-CVE-2026-43230-9cb4@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-43230 https://www.cve.org/CVERecord?id=CVE-2026-43230
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Wed, 06 May 2026 15:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-668

Wed, 06 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When canceling the reconnect worker, care must be taken to reset the reconnect-pending bit. If the reconnect worker has not yet been scheduled before it is canceled, the reconnect-pending bit will stay on forever.
Title		net/rds: Clear reconnect pending bit
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/14eae5564053ac3973b9369dc674638f22f4765e https://git.kernel.org/stable/c/391200c274e90c34071b909ba12e3390b81b767f https://git.kernel.org/stable/c/3cf001aff71b1db1b4732a5381b012a114720664 https://git.kernel.org/stable/c/597c46a42930c963f448720aaf5001dd4ed98af4 https://git.kernel.org/stable/c/60b347333ec259ac7352f62cbbc365b04c065ff8 https://git.kernel.org/stable/c/b89fc7c2523b2b0750d91840f4e52521270d70ed https://git.kernel.org/stable/c/ba2e3472022f44baddf000621fed150d7a599ea3 https://git.kernel.org/stable/c/bcf034fa5f66b6a3e787f765a917934a2045cf7a

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T11:28:27.620Z

Updated: 2026-05-11T22:20:31.240Z

Reserved: 2026-05-01T14:12:55.994Z

Link: CVE-2026-43230

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2026-05-06T12:16:42.957

Modified: 2026-05-08T21:19:05.897

Link: CVE-2026-43230

Redhat

Severity : Moderate

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43230 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-08T23:00:16Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object