Linux Kernel ring buffer uninitialized pointer deref CVE-2026-43272: CVE-2026-43272 May 2026

Linux Kernel ring buffer uninitialized pointer deref CVE-2026-43272
CVE-2026-43272 Published on May 6, 2026

ring-buffer: Fix possible dereference of uninitialized pointer
In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix possible dereference of uninitialized pointer There is a pointer head_page in rb_meta_validate_events() which is not initialized at the beginning of a function. This pointer can be dereferenced if there is a failure during reader page validation. In this case the control is passed to "invalid" label where the pointer is dereferenced in a loop. To fix the issue initialize orig_head and head_page before calling rb_validate_buffer. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Products Associated with CVE-2026-43272

Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.

Affected Versions

Version 5f3b6e839f3ceb8d6ef02231ba9b5aca71b8bf55 and below bc77986f3cb7476637052edf2d87137fa39f153d is affected.

Version 5f3b6e839f3ceb8d6ef02231ba9b5aca71b8bf55 and below d9942396845fef2369478c157b26738fe07142f6 is affected.

Version 5f3b6e839f3ceb8d6ef02231ba9b5aca71b8bf55 and below f1547779402c4cd67755c33616b7203baa88420b is affected.

Version 6.12 is affected.

Before 6.12 is unaffected.

Version 6.18.16, <= 6.18.* is unaffected.

Version 6.19.6, <= 6.19.* is unaffected.

Version 7.0, <= * is unaffected.

Linux Kernel ring buffer uninitialized pointer deref CVE-2026-43272CVE-2026-43272 Published on May 6, 2026

Products Associated with CVE-2026-43272

Affected Versions

Linux Kernel ring buffer uninitialized pointer deref CVE-2026-43272
CVE-2026-43272 Published on May 6, 2026