DevSecOps Toolkit
Login

CVE record

CVE-2026-43499

UNKNOWN

In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of current in remove_waiter() remove_waiter() is used by the slowlock paths, but it is also used for proxy-lock rollback in rt_mutex_start_proxy_lock() when invoked from futex_requeue(). In the latter case waiter::task is not current, but remove_waiter() operates on current for the dequeue operation. That results in several problems: 1) the rbtree dequeue happens without waiter::task::pi_lock being held 2) the waiter task's pi_blocked_on state is not cleared, which leaves a dangling pointer primed for UAF around. 3) rt_mutex_adjust_prio_chain() operates on the wrong top priority waiter task Use waiter::task instead of current in all related operations in remove_waiter() to cure those problems. [ tglx: Fixup rt_mutex_adjust_prio_chain(), add a comment and amend the changelog ]

Sponsored

Amazon picks for vulnerability response

Product discovery links are localized to Amazon US when country data is available.

This page may contain affiliate links. We may earn a commission at no extra cost to you. As an Amazon Associate I earn from qualifying purchases.

Identity security

Hardware security keys

Physical MFA keys for admin accounts, cloud consoles, password managers, and incident response workflows.

View on Amazon US
Sponsored Amazon link
Books

Security engineering books

Books on secure design, incident response, threat modeling, cloud security, and practical defense.

View on Amazon US
Sponsored Amazon link
Network lab

Ethernet cable testers

Portable testers for validating office, rack, home lab, and troubleshooting cable runs.

View on Amazon US
Sponsored Amazon link

Vulnerability metadata

Published
2026-05-21T07:46:19.300Z
Modified
2026-05-21T07:46:19.300Z
EPSS
Not available
Vector
Not available

Recommended platforms

Affiliate-supported recommendations for CVE-2026-43499 vulnerability response.

This page may contain affiliate links. We may earn a commission at no extra cost to you. As an Amazon Associate I earn from qualifying purchases.

marketplace

Security engineering books

Browse practical security, incident response, cloud security, and secure coding books for team learning.

Browse on Amazon
Amazon US
security

Cloud security platform

Continuously review cloud posture, exposed services, identity risks, and misconfigurations.

Explore security tools
monitoring

Monitoring and incident response

Track uptime, logs, traces, TLS expiry, API latency, and production security signals.

Compare monitoring

References

https://git.kernel.org/stable/c/3bfdc63936dd4773109b7b8c280c0f3b5ae7d349https://git.kernel.org/stable/c/3fb7394a837740770f0d6b4b30567e60786a63f2https://git.kernel.org/stable/c/6d52dfcb2a5db86e346cf51f8fcf2071b8085166https://git.kernel.org/stable/c/88614876370aac8ad1050ad785a4c095ba17ac11https://git.kernel.org/stable/c/8a1fc8d698ac5e5916e3082a0f74450d71f9611f
Open this CVE in the lookup tool