CVE-2026-43416

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the powerpc architecture's perf subsystem where the kernel fails to verify if current->mm is active before attempting to retrieve the user callchain. This can lead to a kernel NULL pointer dereference and subsequent kernel panic if the memory descriptor (mm) has already been released. This issue was observed when running profiling BPF programs, specifically within the perf callchain user 64() function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.