CVE-2026-43374

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the Linux kernel within the remove nh grp entry() function. When a nexthop is removed from a group, the system publishes the new group and immediately frees the removed entry's percpu stats using free percpu(). Because the synchronize net() grace period occurs after this action, RCU readers that entered before the update may still access the old group and dereference the freed stats via nh grp entry stats inc() and get cpu ptr(nhge->stats), leading to a use-after-free on percpu memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.