CVE-2026-43266

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the GHES/CPER logic of the Linux kernel regarding the handling of ARM processor CPER records. The system fails to detect when the section length is excessively large. If the firmware provides a record with an oversized section length, the kernel trusts this value, which can lead to a memory dump that extends beyond the firmware memory-mapped area. This occurs specifically when the ERR INFO NUM variable is too large.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.