CVE-2026-43248 | Linux Kernel up to 6.12.74/6.18.15/6.19.5 vhost vhost_vdpa out-of-bounds

SecurityVulns
Yanac

A vulnerability identified as critical has been detected in Linux Kernel up to 6.12.74/6.18.15/6.19.5. Affected is the function vhost_vdpa of the component vhost. Performing a manipulation results in out-of-bounds read.

This vulnerability was named CVE-2026-43248. The attack needs to be approached within the local network. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More