CVE-2026-43149 PUBLISHED

net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean()

Assigner: Linux
Reserved: 01.05.2026 Published: 06.05.2026 Updated: 06.05.2026

In the Linux kernel, the following vulnerability has been resolved:

net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean()

The priv->rx_buffer and priv->tx_buffer are alloc'd together as contiguous buffers in uhdlc_init() but freed as two buffers in uhdlc_memclean().

Change the cleanup to only call dma_free_coherent() once on the whole buffer.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to 6496fb830cbb741d831225cc4e7e5601c6e42970 (excl.)
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to ba8d8429e5d6c36f9a654d2b96b9e043c43d92b4 (excl.)
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to 011ae5dd84dc9f05eb9b8e1adff44252ac776e7b (excl.)
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to 0f85a9655445e67bb0238cfc983d7c383b54938e (excl.)
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to 84b932bc9899d43e5829e6cf088b72d73a922b2b (excl.)
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to d8a522085d09b30aba1016daf1dddac37c0f0285 (excl.)
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to d68994e37ac3b285692559776e0279a88a3b5f8d (excl.)
  • affected from c19b6d246a35627c3a69b2fa6bdece212b48214b to 36bd7d5deef936c4e1e3cd341598140e5c14c1d3 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 4.8 is affected
  • unaffected from 0 to 4.8 (excl.)
  • unaffected from 5.10.252 to 5.10.* (incl.)
  • unaffected from 5.15.202 to 5.15.* (incl.)
  • unaffected from 6.1.165 to 6.1.* (incl.)
  • unaffected from 6.6.128 to 6.6.* (incl.)
  • unaffected from 6.12.75 to 6.12.* (incl.)
  • unaffected from 6.18.16 to 6.18.* (incl.)
  • unaffected from 6.19.6 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References