Linux Kernel: MAILBOX OOB in fw_mbox_index_xlate()
CVE-2026-43281 Published on May 6, 2026
mailbox: Prevent out-of-bounds access in fw_mbox_index_xlate()
In the Linux kernel, the following vulnerability has been resolved:
mailbox: Prevent out-of-bounds access in fw_mbox_index_xlate()
Although it is guided that `#mbox-cells` must be at least 1, there are
many instances of `#mbox-cells = <0>;` in the device tree. If that is
the case and the corresponding mailbox controller does not provide
`fw_xlate` and of_xlate` function pointers, `fw_mbox_index_xlate()` will
be used by default and out-of-bounds accesses could occur due to lack of
bounds check in that function.
Products Associated with CVE-2026-43281
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c and below 2662ed331a69c0b551f78af58f12eb629a89a36f is affected.
- Version 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c and below 31c4c67dec3362094a6747a171a4848e98542265 is affected.
- Version 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c and below 01d9a8c2615d436b2b30c19c1afe9fcd5726ff6d is affected.
- Version 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c and below 4caae8168d1b808c7d4ff481295292e3f97f90fb is affected.
- Version 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c and below f50b39fd7c72a8734153644ee945ca0d8b2e65ab is affected.
- Version 2b6d83e2b8b7de82331a6a1dcd64b51020a6031c and below fcd7f96c783626c07ee3ed75fa3739a8a2052310 is affected.
- Version 3.18 is affected.
- Before 3.18 is unaffected.
- Version 6.1.167, <= 6.1.* is unaffected.
- Version 6.6.130, <= 6.6.* is unaffected.
- Version 6.12.77, <= 6.12.* is unaffected.
- Version 6.18.16, <= 6.18.* is unaffected.
- Version 6.19.6, <= 6.19.* is unaffected.
- Version 7.0, <= * is unaffected.