CVE-2026-43473

scsi: mpi3mr: Add NULL checks when resetting request and reply queues

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Add NULL checks when resetting request and reply queues The driver encountered a crash during resource cleanup when the reply and
request queues were NULL due to freed memory. This issue occurred when the
creation of reply or request queues failed, and the driver freed the memory
first, but attempted to mem set the content of the freed memory, leading to
a system crash. Add NULL pointer checks for reply and request queues before accessing the
reply/request memory during cleanup

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2026-05-01 CVE Reserved
2026-05-08 CVE Published
2026-05-12 CVE Updated
2026-05-14 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/fe6db615156573d3f6a37564b8a590cb03bbaf25	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/7df0296ad4e9253d12c6dbe7f120044dddc95600	2026-03-25
https://git.kernel.org/stable/c/7da755e0d02e9ca035065127e108d1fed8950dc8	2026-03-25
https://git.kernel.org/stable/c/78d3f201f8b609928eade53cf03a52df5415aaf7	2026-03-25
https://git.kernel.org/stable/c/e978a36f332ede78eb4de037b517db16265d420d	2026-03-19
https://git.kernel.org/stable/c/220d7ca70611a73d50ef8e9edac630ed1ececb7c	2026-03-19
https://git.kernel.org/stable/c/fa96392ebebc8fade2b878acb14cce0f71016503	2026-02-18

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.17 < 6.1.167 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.17 < 6.1.167"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.17 < 6.6.130 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.17 < 6.6.130"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.17 < 6.12.78 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.17 < 6.12.78"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.17 < 6.18.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.17 < 6.18.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.17 < 6.19.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.17 < 6.19.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.17 < 7.0 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.17 < 7.0"		en		Affected