Vulnerability Report

CVE-2026-43494

Title: Linux Kernel net/rds Zerocopy Double-Free

Other

Proof Of Concept

PoC Available for CVE-2026-43494

CWE Category NVD-CWE-noinfo

Published Date May 21, 2026

Modified Date Jun 12, 2026

Exploit Status Available

Score 7.8 CVSS v

Exploit Probability (EPSS)

0.21%

Vulnerability Summary

CVE-2026-43494: In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page pin fails When iov_iter_get_pages2() fails in rds_message_zcopy_from_user(), the pinned pages are released with put_page(), and rm->data.op_mmp_znotifier is cleared. But we fail to properly clear rm->data.op_nents. Later when rds_message_purge() is called from rds_sendmsg() the cleanup loop iterates over the incorrectly non zero number of op_nents and frees them again. Fix this by properly resetting op_nents when it should be in rds_message_zcopy_from_user().

Impacted Vendors

Analysis in Progress...

Reference Links

https://git.kernel.org/stable/c/e174929793195e0cd6a4adb0cad731b39f9019b4

CVSS v3.1

Source Entity 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Severity HIGH

7.8

Attack Vector

LOCAL

Complexity

LOW

Privileges

N/A

Interaction

NONE

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

UNCHANGED

RAW VECTOR CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2026-43494 Exploits & PoCs (Proof Of Concept)

GitHub https://github.com/jayhutajulu1/CVE-2026-43494-PinTheft-PoC

View Code

GitHub https://github.com/0xBlackash/CVE-2026-43494

View Code

GitHub https://github.com/Koshmare-Blossom/PinTheft-asm

View Code

June 12, 2026 MODIFIED

Vulnerability data updated via NVD.

June 01, 2026 MODIFIED

Vulnerability data updated via NVD.

May 30, 2026 MODIFIED

Vulnerability data updated via NVD.

May 23, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

May 21, 2026 MODIFIED

Vulnerability data updated via NVD.

Attack Vector Matrix

Access Vector LOCAL

Complexity LOW

Privileges N/A

Interaction NONE

CVSS Vector String


                                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Stack

No specific products linked.