ByteOS Network

NVD Vulnerability Details :

CVE-2026-43106

Received

Source-416baaa9-dc9f-4396-8d5f-8c081fb06d67

Published At-06 May, 2026 | 10:16

Updated At-06 May, 2026 | 10:16

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefiles_cull() The patch mentioned below changed cachefiles_bury_object() to expect 2 references to the 'rep' dentry. Three of the callers were changed to use start_removing_dentry() which takes an extra reference so in those cases the call gets the expected references. However there is another call to cachefiles_bury_object() in cachefiles_cull() which did not need to be changed to use start_removing_dentry() and so was not properly considered. It still passed the dentry with just one reference so the net result is that a reference is lost. To meet the expectations of cachefiles_bury_object(), cachefiles_cull() must take an extra reference before the call. It will be dropped by cachefiles_bury_object().

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

References

Hyperlink	Source	Resource
https://git.kernel.org/stable/c/1635c2acdde86c4f555b627aec873c8677c421ed	416baaa9-dc9f-4396-8d5f-8c081fb06d67	N/A
https://git.kernel.org/stable/c/6577df7dc7a7de128442b6192c7a32195c923480	416baaa9-dc9f-4396-8d5f-8c081fb06d67	N/A

Hyperlink: https://git.kernel.org/stable/c/1635c2acdde86c4f555b627aec873c8677c421ed

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Resource: N/A

Hyperlink: https://git.kernel.org/stable/c/6577df7dc7a7de128442b6192c7a32195c923480

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History