Linux Kernel Security Update Advisory

Overview

---

A security update has been released to address a vulnerability in the Linux Kernel. users of affected products should update to the latest version.

Affected

---

• CVE-2026-43284.
  • Linux Kernel versions 4.11 and above but below 5.10.255.
  • Linux Kernel versions 5.12 or later but less than 5.15.205.
  • Linux Kernel version 5.16 or later but less than 6.1.171.
  • Linux Kernel version 6.2 or later but less than 6.6.138.
  • Linux Kernel version 6.7 or later but less than 6.12.87.
  • Linux Kernel version 6.13 or later but less than 6.18.28.
  • Linux Kernel version 7.0 or later but less than 7.0.5.
• CVE-2026-43500.
  • Linux Kernel version 5.3 or later but less than 6.18.29.
  • Linux Kernel version 6.19 or later but less than 7.0.6.

Resolved Vulnerabilities

---

• Page cache write vulnerability in xfrm-ESP in the Linux Kernel (CVE-2026-43284).
• Page cache write vulnerability in RxRPC in the Linux Kernel (CVE-2026-43500).

Patch Information

---

vulnerability patches have been made available in the latest updates. updating to the following versions or later will resolve the vulnerability.

• CVE-2026-43284: 5.10.255 and later, 5.15.205 and later, 6.1.171 and later, 6.6.138 and later, 6.12.87 and later, 6.18.28 and later, 7.0.5 and later.
• CVE-2026-43500: 6.18.29 and later, 7.0.6 and later.

Notes

---

reference sites include Dirty Frag: Universal Linux LPE, xfrm: esp: avoid in-place decrypt on shared skb frags, rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present, CVE-2026-43284, CVE-2026-43500.