CVE-2026-43228
Analyzed Analyzed - Analysis Complete
HFS Filesystem CNID Count Overflow Handling Vulnerability

Publication date: 2026-05-06

Last updated on: 2026-05-08

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: hfs: Replace BUG_ON with error handling for CNID count checks In a06ec283e125 next_id, folder_count, and file_count in the super block info were expanded to 64 bits, and BUG_ONs were added to detect overflow. This triggered an error reported by syzbot: if the MDB is corrupted, the BUG_ON is triggered. This patch replaces this mechanism with proper error handling and resolves the syzbot reported bug. Singed-off-by: Jori Koolstra <[email protected]>
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-06
Last Modified
2026-05-08
Generated
2026-06-16
AI Q&A
2026-05-06
EPSS Evaluated
2026-06-15
NVD
CVE-2026-43228
EUVD
EUVD-2026-27787
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel From 6.18 (inc) to 6.19.6 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-617 The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is related to the Linux kernel's handling of the HFS filesystem. Specifically, certain counters in the filesystem's super block (next_id, folder_count, and file_count) were expanded to 64 bits, and BUG_ON checks were added to detect overflow conditions. However, if the metadata (MDB) became corrupted, these BUG_ON checks would trigger a kernel error. The vulnerability was that these BUG_ON checks caused the kernel to crash instead of handling the error gracefully. The fix replaced these BUG_ON checks with proper error handling to avoid crashes when the metadata is corrupted.

Impact Analysis

This vulnerability can cause the Linux kernel to crash if the HFS filesystem metadata is corrupted, due to the BUG_ON checks triggering a kernel panic. This can lead to system instability, unexpected reboots, or denial of service, impacting the availability of the system.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-43228. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart