oM noM Security Feeds cve
vulnerability context

CVE-2026-43456

CVSS 7.8 HIGHEPSS 4.8%CWE-908OTX 6 pulses

In the Linux kernel, the following vulnerability has been resolved: bonding: fix type confusion in bond_setup_by_slave() kernel BUG at net/core/skbuff.c:2306! Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI RIP: 0010:pskb_expand_head+0xa08/0xfe0 net/core/skbuff.c:2306 RSP: 0018:ffffc90004aff760 EFLAGS: 00010293 RAX: 0000000000000000 RBX: ffff88807e3c8780 RCX: ffffffff89593e0e RDX: ffff88807b7c4900 RSI: ffffffff89594747 RDI: ffff88807b7c4900 RBP: 0000000000000820 R08: 0000000000000005 R09: 0000000000000000 R10: 00000000961a63e0 R11: 0000000000000000 R12: ffff88807e3c8780 R13: 00000000961a6560...

Published 2026-05-08 · last modified 2026-06-17

details

CISA KEV status
Not in catalog
CVSS v3
7.8 / HIGH
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
4.8% percentile (score 0.0015)
CWE
CWE-908
OTX pulses
6 total, 0 recent

source mentions 2

source consensus

  • Bluesky
  • MSRC Update Guide
Want the 3-bullet summary of CVE-2026-43456, plus webhook alerts when KEV is updated? Pro is $10/mo.