CVE-2026-43287

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The DRM IOCTL MODE CREATEPROPBLOB ioctl allows userspace to allocate arbitrary-sized property blobs using kernel memory. Because these allocations are not accounted to the allocating process's memory cgroup (memcg), unprivileged users can trigger unbounded kernel memory consumption, potentially leading to a system-wide Out-Of-Memory (OOM) condition, where the system runs out of available memory and begins terminating processes to recover.

Recommendations Mark the property blob data allocation with GFP KERNEL ACCOUNT to ensure memory is properly charged to the caller's memcg.