CVE-2026-43241

medium Red Hat
Published: May 6, 2026 (8 days ago)
Last Modified: May 6, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel component `ntb_hw_switchtec`. This vulnerability allows an attacker to trigger an array-index-out-of-bounds access when handling the number of MW LUTs, which depends on NTB configuration. This invalid access to `mw_sizes` can lead to a Denial of Service (DoS) condition, making the system unavailable.

CWE

CWE-1285

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References

🔗 bugzilla.redhat.com 🔗 www.cve.org 🔗 nvd.nist.gov 🔗 lore.kernel.org