CVE-2026-43174 PUBLISHED

io_uring/zcrx: fix post open error handling

Assigner: Linux
Reserved: 01.05.2026 Published: 06.05.2026 Updated: 06.05.2026

In the Linux kernel, the following vulnerability has been resolved:

io_uring/zcrx: fix post open error handling

Closing a queue doesn't guarantee that all associated page pools are terminated right away, let the refcounting do the work instead of releasing the zcrx ctx directly.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from e0793de24a9f610bd8ce106f7033b3966e7fca0e to 18afaff077b46655a8eb6fd7f6de1b81327be577 (excl.) affected from e0793de24a9f610bd8ce106f7033b3966e7fca0e to 5d540e4508950c674d6feef1d95463d039bbf4f5 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.15 is affected unaffected from 0 to 6.15 (excl.) unaffected from 6.19.6 to 6.19.* (incl.) unaffected from 7.0 to * (incl.)

References

https://git.kernel.org/stable/c/18afaff077b46655a8eb6fd7f6de1b81327be577
https://git.kernel.org/stable/c/5d540e4508950c674d6feef1d95463d039bbf4f5