CVE-2026-43163

Home/CVE/In the Linux kernel, the following vulnerability has been resolved: md/bitmap: fix GPF in write_page caused by resize r

CVE

In the Linux kernel, the following vulnerability has been resolved: md/bitmap: fix GPF in write_page caused by resize r

In the Linux kernel, the following vulnerability has been resolved: md/bitmap: fix GPF in write_page caused by resize race A General Protection Fault occurs in write_page() during array resize: RIP: 0010:write_page+0x22b/0x3c0 [md_mod] This is a use-after-free race between bitmap_daemon_work() and __bitmap_resize(). The daemon iterates over bitmap-storage.filemap without locking, while the resize path frees that storage via md_bitmap_file_unmap(). quiesce() does not stop the md thread, allowing concurrent access to freed pages. Fix by holding mddev-bitmap_info.mutex during the bitmap update.

MEDIUM · CVSS 4.7 EPSS 0.00012

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-362Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

▤

Affected Products & Versions

linux kernel>= 3.5 and < 5.10.252
linux kernel>= 5.11 and < 5.15.202
linux kernel>= 5.16 and < 6.1.165
linux kernel>= 6.2 and < 6.6.128
linux kernel>= 6.7 and < 6.12.75
linux kernel>= 6.13 and < 6.18.16
linux kernel>= 6.19 and < 6.19.6

▣

Scoring & Timeline

4.7

MEDIUM · CVSS v3.1 · 416baaa9-dc9f-4396-8d5f-8c081fb06d67

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD06 May 2026 · 12:16 PM

CVSS VectorCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

⚑

Vendor Advisories

rhsaRHSA-2026:19568Important
rhsaRHSA-2026:21209Moderate
rhsaRHSA-2026:21745Moderate
rhsaRHSA-2026:22900Moderate
rhsaRHSA-2026:21706Moderate
Show all 6 vendor advisoriesrhsaRHSA-2026:22334Moderate

🔗

References & Sources

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

https://git.kernel.org/stable/c/140cc839fbeb1ddb33a8da8811b716d88d3905b7Patch

https://git.kernel.org/stable/c/46ef85f854dfa9d5226b3c1c46493d79556c9589Patch

https://git.kernel.org/stable/c/5f73c8b33df9a605a591eab72d43a969600c1f8cPatch

https://git.kernel.org/stable/c/9a6f8cd28bb9bb6ed86a6df19331fb08016dee7fPatch

https://git.kernel.org/stable/c/a437e3bf30e32846079e470c1ba5ee790bccdf89Patch

https://git.kernel.org/stable/c/d3af62411e19752c663fe4f424dbf49d95a4cc7cPatch

Show all 8 references

https://git.kernel.org/stable/c/d92b8fac294b5f915c50e65ce4ae2262e53614ecPatch

https://git.kernel.org/stable/c/ebcacc7ca22d5e8a03a970f0621ae1d1356b9ae8Patch

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin