CVE-2026-43331

medium Red Hat
EPSS Score
0.0%
Exploitation probability in 30 days
Top 98% most likely to be exploited
Published: May 8, 2026 (63 days ago)
Last Modified: May 8, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel. When Kernel Coverage (KCOV) instrumentation is enabled, a local user performing a kexec operation can trigger an invalid state within the x86/kexec component. This invalid state, related to the GS base that KCOV relies on for per-CPU data, causes the kernel to crash in an endless loop. This vulnerability leads to a Denial of Service (DoS) for the affected system.

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References