[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-43499":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-15T22:50:23.791Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":14,"duplicates":37,"related":38,"reserved_at":9,"published_at":46,"modified_at":47,"state":48,"summary":49,"references_raw":58,"kevs":84,"epss":85,"epss_history":88,"metrics":161,"affected":169},"CVE-2026-43499","In the Linux kernel, the following vulnerability has been resolved:\n\nrtmutex: Use waiter::task instead of current in remove_waiter()\n\nremove_waiter() is used by the slowlock paths, but it is also used for\nproxy-lock rollback in rt_mutex_start_proxy_lock() when invoked from\nfutex_requeue().\n\nIn the latter case waiter::task is not current, but remove_waiter()\noperates on current for the dequeue operation. That results in several\nproblems:\n\n  1) the rbtree dequeue happens without waiter::task::pi_lock being held\n\n  2) the waiter task's pi_blocked_on state is not cleared, which leaves a\n     dangling pointer primed for UAF around.\n\n  3) rt_mutex_adjust_prio_chain() operates on the wrong top priority waiter\n     task\n\nUse waiter::task instead of current in all related operations in\nremove_waiter() to cure those problems.\n\n[ tglx: Fixup rt_mutex_adjust_prio_chain(), add a comment and amend the\n  \tchangelog ]",null,[],[],[],[],[15,17,19,21,23,25,27,29,31,33,35],{"_key":16},"OPENSUSE-SU-2026:10859-1",{"_key":18},"MGASA-2026-0174",{"_key":20},"MGASA-2026-0177",{"_key":22},"UBUNTU-CVE-2026-43499",{"_key":24},"SUSE-SU-2026:2310-1",{"_key":26},"SUSE-SU-2026:2317-1",{"_key":28},"SUSE-SU-2026:22048-1",{"_key":30},"SUSE-SU-2026:2332-1",{"_key":32},"SUSE-SU-2026:2331-1",{"_key":34},"SUSE-SU-2026:2383-1",{"_key":36},"DEBIAN-CVE-2026-43499",[],[39,40,41,42,43,44,45],{"_key":16},{"_key":24},{"_key":26},{"_key":28},{"_key":30},{"_key":32},{"_key":34},"2026-05-21T12:17:49.281Z","2026-06-14T17:45:36.065Z","Awaiting Analysis",{"cisa_kev":50,"cisa_ransomware":50,"cisa_vendor":9,"epss_severity":51,"epss_score":52,"severity":53,"severity_score":54,"severity_version":55,"severity_source":56,"severity_vector":57,"severity_status":48},false,"low",0.00125,"high",7.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[59,64,68,72,76,80],{"url":60,"sources":61,"tags":63},"https://git.kernel.org/stable/c/8a1fc8d698ac5e5916e3082a0f74450d71f9611f",[56,62],"nvd",[],{"url":65,"sources":66,"tags":67},"https://git.kernel.org/stable/c/6d52dfcb2a5db86e346cf51f8fcf2071b8085166",[56,62],[],{"url":69,"sources":70,"tags":71},"https://git.kernel.org/stable/c/3fb7394a837740770f0d6b4b30567e60786a63f2",[56,62],[],{"url":73,"sources":74,"tags":75},"https://git.kernel.org/stable/c/88614876370aac8ad1050ad785a4c095ba17ac11",[56,62],[],{"url":77,"sources":78,"tags":79},"https://git.kernel.org/stable/c/3bfdc63936dd4773109b7b8c280c0f3b5ae7d349",[56,62],[],{"url":81,"sources":82,"tags":83},"https://git.kernel.org/stable/c/d8cce4773c2b23d819baf5abedc62f7b430e8745",[56,62],[],[],{"date":86,"score":52,"percentile":87},"2026-06-15",0.02517,[89,93,96,98,101,104,107,110,113,117,120,123,125,127,130,133,136,139,142,145,148,151,154,157,160],{"date":90,"score":91,"percentile":92},"2026-05-22",0.00024,0.07224,{"date":94,"score":91,"percentile":95},"2026-05-23",0.07227,{"date":97,"score":91,"percentile":92},"2026-05-24",{"date":99,"score":91,"percentile":100},"2026-05-25",0.07206,{"date":102,"score":91,"percentile":103},"2026-05-26",0.07187,{"date":105,"score":91,"percentile":106},"2026-05-27",0.06949,{"date":108,"score":91,"percentile":109},"2026-05-28",0.07066,{"date":111,"score":91,"percentile":112},"2026-05-29",0.07077,{"date":114,"score":115,"percentile":116},"2026-05-30",0.00013,0.02495,{"date":118,"score":115,"percentile":119},"2026-05-31",0.02488,{"date":121,"score":115,"percentile":122},"2026-06-01",0.02474,{"date":124,"score":115,"percentile":116},"2026-06-02",{"date":126,"score":115,"percentile":119},"2026-06-03",{"date":128,"score":115,"percentile":129},"2026-06-04",0.02491,{"date":131,"score":115,"percentile":132},"2026-06-05",0.02503,{"date":134,"score":115,"percentile":135},"2026-06-06",0.02498,{"date":137,"score":115,"percentile":138},"2026-06-07",0.0244,{"date":140,"score":115,"percentile":141},"2026-06-08",0.02425,{"date":143,"score":115,"percentile":144},"2026-06-09",0.0238,{"date":146,"score":115,"percentile":147},"2026-06-10",0.02388,{"date":149,"score":115,"percentile":150},"2026-06-11",0.02405,{"date":152,"score":115,"percentile":153},"2026-06-12",0.02401,{"date":155,"score":115,"percentile":156},"2026-06-13",0.02394,{"date":158,"score":115,"percentile":159},"2026-06-14",0.02402,{"date":86,"score":52,"percentile":87},[162,167],{"source":56,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":163,"cvss_v4_0":9},{"baseScore":54,"baseSeverity":164,"vectorString":57,"impactScore":165,"exploitabilityScore":166},"HIGH",9.8,4.6,{"source":62,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":168,"cvss_v4_0":9},{"baseScore":54,"baseSeverity":164,"vectorString":57,"impactScore":165,"exploitabilityScore":166},[170],{"ecosystem":9,"name":171,"vendor":172,"product":172,"cpe_part":173,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":174},"Linux","linux","a",[175,182,185,188,191,194,197],{"version":176,"is_range":177,"range_type":56,"version_start":178,"version_start_type":179,"version_end":180,"version_end_type":181,"fixed_in":9},">= 8161239a8bcce9ad6b537c04a1fa3b5c68bae693, \u003C d8cce4773c2b23d819baf5abedc62f7b430e8745",true,"8161239a8bcce9ad6b537c04a1fa3b5c68bae693","including","d8cce4773c2b23d819baf5abedc62f7b430e8745","excluding",{"version":183,"is_range":177,"range_type":56,"version_start":178,"version_start_type":179,"version_end":184,"version_end_type":181,"fixed_in":9},">= 8161239a8bcce9ad6b537c04a1fa3b5c68bae693, \u003C 8a1fc8d698ac5e5916e3082a0f74450d71f9611f","8a1fc8d698ac5e5916e3082a0f74450d71f9611f",{"version":186,"is_range":177,"range_type":56,"version_start":178,"version_start_type":179,"version_end":187,"version_end_type":181,"fixed_in":9},">= 8161239a8bcce9ad6b537c04a1fa3b5c68bae693, \u003C 6d52dfcb2a5db86e346cf51f8fcf2071b8085166","6d52dfcb2a5db86e346cf51f8fcf2071b8085166",{"version":189,"is_range":177,"range_type":56,"version_start":178,"version_start_type":179,"version_end":190,"version_end_type":181,"fixed_in":9},">= 8161239a8bcce9ad6b537c04a1fa3b5c68bae693, \u003C 3fb7394a837740770f0d6b4b30567e60786a63f2","3fb7394a837740770f0d6b4b30567e60786a63f2",{"version":192,"is_range":177,"range_type":56,"version_start":178,"version_start_type":179,"version_end":193,"version_end_type":181,"fixed_in":9},">= 8161239a8bcce9ad6b537c04a1fa3b5c68bae693, \u003C 88614876370aac8ad1050ad785a4c095ba17ac11","88614876370aac8ad1050ad785a4c095ba17ac11",{"version":195,"is_range":177,"range_type":56,"version_start":178,"version_start_type":179,"version_end":196,"version_end_type":181,"fixed_in":9},">= 8161239a8bcce9ad6b537c04a1fa3b5c68bae693, \u003C 3bfdc63936dd4773109b7b8c280c0f3b5ae7d349","3bfdc63936dd4773109b7b8c280c0f3b5ae7d349",{"version":198,"is_range":50,"range_type":56,"version_start":198,"version_start_type":179,"version_end":198,"version_end_type":179,"fixed_in":9},"2.6.39"]