CVE-2026-43283 PUBLISHED

net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle

Assigner: Linux
Reserved: 01.05.2026 Published: 06.05.2026 Updated: 06.05.2026

In the Linux kernel, the following vulnerability has been resolved:

net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle

dma_free_coherent() in error path takes priv->rx_buf.alloc_len as the dma handle. This would lead to improper unmapping of the buffer.

Change the dma handle to priv->rx_buf.alloc_phys.

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to 0f589ee54fd6d76d3f75e745f7f12c64cbd749e5 (excl.) affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to accd0599bc8e73b962247c6c6c70ca7aa1f8e8d0 (excl.) affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to 8320727be7ff704e07c87624efc2a4a75f54b3ce (excl.) affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to 1e300c33ef3cc544c2b9c693778fe9490cfe9184 (excl.) affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to 1b1371cd4032ae859838ebc74215f569987bb197 (excl.) affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to 1b1d3c5d58a80a19d017a409aa2308162bab5bbf (excl.) affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to 7e54ff938bebb173822b4c38b33fc164c1cabf92 (excl.) affected from 6af55ff52b02d492d45db88df3e461fa51a6f753 to ffe68c3766997d82e9ccaf1cdbd47eba269c4aa2 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 3.15 is affected unaffected from 0 to 3.15 (excl.) unaffected from 5.10.252 to 5.10.* (incl.) unaffected from 5.15.202 to 5.15.* (incl.) unaffected from 6.1.165 to 6.1.* (incl.) unaffected from 6.6.128 to 6.6.* (incl.) unaffected from 6.12.75 to 6.12.* (incl.) unaffected from 6.18.16 to 6.18.* (incl.) unaffected from 6.19.6 to 6.19.* (incl.) unaffected from 7.0 to * (incl.)