In the Linux kernel, the following vulnerability has been resolved:

ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4()

In acpi_processor_errata_piix4(), the pointer dev is first assigned an IDE
device and then reassigned an ISA device:

dev = pci_get_subsys(..., PCI_DEVICE_ID_INTEL_82371AB, ...);
dev = pci_get_subsys(..., PCI_DEVICE_ID_INTEL_82371AB_0, ...);

If the first lookup succeeds but the second fails, dev becomes NULL. This
leads to a potential null-pointer dereference when dev_dbg() is called:

if (errata.piix4.bmisx)
dev_dbg(&dev->dev, ...);

To prevent this, use two temporary pointers and retrieve each device
independently, avoiding overwriting dev with a possible NULL value.

[ rjw: Subject adjustment, added an empty code line ]

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 06724a60cfa9767ea90b0f5d3dfb5cdd251b64f5
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < ad86ac604f8391c0212a91412d4f764c7a85f254
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 01e8751b37a366b1ca561add0042f2ceb18c03bf
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < b803811485ac0b2f774b6bf3abc8b999ba3b7033
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 29f60d3d06818d40118a30d663231f027ae87a05
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 0398b641be2b66c2fc7e0163c606ef19372e7ad5
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < f132e089fe89cadc2098991f0a3cb05c3f824ac6
Linux Linux affected
Version Status Constraints
2.6.12 affected
0 unaffected < 2.6.12
5.15.202 unaffected ≤ 5.15.*
6.1.165 unaffected ≤ 6.1.*
6.6.128 unaffected ≤ 6.6.*
6.12.75 unaffected ≤ 6.12.*
6.18.16 unaffected ≤ 6.18.*
6.19.6 unaffected ≤ 6.19.*
7.0 unaffected ≤ *

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors Products
Linux Subscribe
Linux Kernel Subscribe

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/01e8751b37a366b1ca561add0042f2ceb18c03bf cve-icon cve-icon
https://git.kernel.org/stable/c/0398b641be2b66c2fc7e0163c606ef19372e7ad5 cve-icon cve-icon
https://git.kernel.org/stable/c/06724a60cfa9767ea90b0f5d3dfb5cdd251b64f5 cve-icon cve-icon
https://git.kernel.org/stable/c/29f60d3d06818d40118a30d663231f027ae87a05 cve-icon cve-icon
https://git.kernel.org/stable/c/ad86ac604f8391c0212a91412d4f764c7a85f254 cve-icon cve-icon
https://git.kernel.org/stable/c/b803811485ac0b2f774b6bf3abc8b999ba3b7033 cve-icon cve-icon
https://git.kernel.org/stable/c/f132e089fe89cadc2098991f0a3cb05c3f824ac6 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026050800-CVE-2026-43313-6ec3@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-43313 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-43313 cve-icon
History

Sat, 09 May 2026 03:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-476

Sat, 09 May 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low

Fri, 08 May 2026 15:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-476

Fri, 08 May 2026 13:30:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4() In acpi_processor_errata_piix4(), the pointer dev is first assigned an IDE device and then reassigned an ISA device: dev = pci_get_subsys(..., PCI_DEVICE_ID_INTEL_82371AB, ...); dev = pci_get_subsys(..., PCI_DEVICE_ID_INTEL_82371AB_0, ...); If the first lookup succeeds but the second fails, dev becomes NULL. This leads to a potential null-pointer dereference when dev_dbg() is called: if (errata.piix4.bmisx) dev_dbg(&dev->dev, ...); To prevent this, use two temporary pointers and retrieve each device independently, avoiding overwriting dev with a possible NULL value. [ rjw: Subject adjustment, added an empty code line ]
Title ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-09T04:10:27.388Z

Reserved: 2026-05-01T14:12:56.001Z

Link: CVE-2026-43313

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-08T14:16:39.710

Modified: 2026-05-08T14:16:39.710

Link: CVE-2026-43313

cve-icon Redhat

Severity : Low

Publid Date: 2026-05-08T00:00:00Z

Links: CVE-2026-43313 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-09T04:30:17Z

Weaknesses

No weakness.