CVE-2026-43461

May 8, 2026, 3:16 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: spi: amlogic: spifc-a4: Fix DMA mapping error handling Fix three bugs in aml_sfc_dma_buffer_setup() error paths: 1. Unnecessary goto: When the first DMA mapping (sfc->daddr) fails, nothing needs cleanup. Use direct return instead of goto. 2. Double-unmap bug: When info DMA mapping failed, the code would unmap sfc->daddr inline, then fall through to out_map_data which would unmap it again, causing a double-unmap. 3. Wrong unmap size: The out_map_info label used datalen instead of infolen when unmapping sfc->iaddr, which could lead to incorrect DMA sync behavior.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *
Amlogic
  • Spifc
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /
a amlogic spifc / / / / / / / /

References

https://git.kernel.org/stable/c/0a83d6c9e149a176340190fa9cbadf2266db4c9a
https://git.kernel.org/stable/c/b20b437666e1cb26a7c499d1664e8f2a0ac67000
https://git.kernel.org/stable/c/c0b88f1176074f80140ed77fce909f254b7180ab

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2026-05-08
CVE-2026-43461

Timeline

Published: May 8, 2026, 3:16 p.m.
Last Modified: May 8, 2026, 3:16 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.