CVE-2026-43333

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the BPF subsystem where the check mem access() function matches PTR TO BUF via base type(), which strips PTR MAYBE NULL. This allows direct dereference of pointers without a null check. Specifically, map iterator ctx->key and ctx->value are marked as PTR TO BUF | PTR MAYBE NULL. During stop callbacks, these can be NULL, leading to a kernel NULL dereference (a situation where the system attempts to read or write to a memory address of zero, typically resulting in a system crash).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.