CVE-2026-43420

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the Ceph component of the Linux kernel where an i nlink counter underrun can occur during an asynchronous unlink operation. In the ceph unlink() function, a request is submitted via ceph mdsc submit request() without waiting for completion. A race condition occurs if a worker thread processes a CEPH CAP OP IMPORT, CEPH CAP OP GRANT, or a CEPH MSG CLIENT REPLY before the drop nlink() function is called. These events trigger set nlink(), which updates the i nlink counter based on values from the Metadata Server (MDS). If the counter is updated to zero, the subsequent call to drop nlink() attempts to decrement it further, leading to an illegal operation and a system warning.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.