CVE-2026-43458

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A slab-use-after-free issue exists in the Linux kernel's caif serial line discipline. The problem occurs in the TX path when tty write room() is called, leading to a faulting access on tty->link->port within the pty write room() function. This happens because the reference to tty->link is not properly held during the lifetime of the caif serial line discipline.

Recommendations Update the Linux kernel to a version where the ldisc open() function acquires a kref on tty->link and the ser release() function drops it, ensuring the reference is also released on the ldisc open() error path.