CVE-2026-43043

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The AF ALG interface fails to unmark the end of a Scatter/Gather List (SGL) when chaining a new af alg tsgl structure. If the sendmsg() function fills an SGL exactly to MAX SGL ENTS, the last entry is marked as the end. A subsequent sendmsg() call allocates and chains a new SGL but does not clear the end marker on the previous SGL's last data entry. This results in the crypto scatterwalk reaching a premature end and returning NULL on the sg next() function, which leads to a kernel panic during dereference.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.