CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-43276

In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix double destroy_workqueue on service rescan PCI path While testing corner cases in the driver, a use-after-free crash was found on the service rescan PCI path. When mana_serv_reset() calls mana_gd_suspend(), mana_gd_cleanup() destroys gc->service_wq. If the subsequent mana_gd_resume() fails with -ETIMEDOUT or -EPROTO, the code falls through to mana_serv_rescan() which triggers pci_stop_and_remove_bus_device(). This invokes the PCI .remove callback (mana_gd_remove), which calls mana_gd_cleanup() a second time, attempting to destroy the already- freed workqueue. Fix this by NULL-checking gc->service_wq in mana_gd_cleanup() and setting it to NULL after destruction. Call stack of issue for reference: [Sat Feb 21 18:53:48 2026] Call Trace: [Sat Feb 21 18:53:48 2026] <TASK> [Sat Feb 21 18:53:48 2026] mana_gd_cleanup+0x33/0x70 [mana] [Sat Feb 21 18:53:48 2026] mana_gd_remove+0x3a/0xc0 [mana] [Sat Feb 21 18:53:48 2026] pci_device_remove+0x41/0xb0 [Sat Feb 21 18:53:48 2026] device_remove+0x46/0x70 [Sat Feb 21 18:53:48 2026] device_release_driver_internal+0x1e3/0x250 [Sat Feb 21 18:53:48 2026] device_release_driver+0x12/0x20 [Sat Feb 21 18:53:48 2026] pci_stop_bus_device+0x6a/0x90 [Sat Feb 21 18:53:48 2026] pci_stop_and_remove_bus_device+0x13/0x30 [Sat Feb 21 18:53:48 2026] mana_do_service+0x180/0x290 [mana] [Sat Feb 21 18:53:48 2026] mana_serv_func+0x24/0x50 [mana] [Sat Feb 21 18:53:48 2026] process_one_work+0x190/0x3d0 [Sat Feb 21 18:53:48 2026] worker_thread+0x16e/0x2e0 [Sat Feb 21 18:53:48 2026] kthread+0xf7/0x130 [Sat Feb 21 18:53:48 2026] ? __pfx_worker_thread+0x10/0x10 [Sat Feb 21 18:53:48 2026] ? __pfx_kthread+0x10/0x10 [Sat Feb 21 18:53:48 2026] ret_from_fork+0x269/0x350 [Sat Feb 21 18:53:48 2026] ? __pfx_kthread+0x10/0x10 [Sat Feb 21 18:53:48 2026] ret_from_fork_asm+0x1a/0x30 [Sat Feb 21 18:53:48 2026] </TASK>

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.3%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2026-43276

Linux » Linux Kernel » Version: 6.16

cpe:2.3:o:linux:linux_kernel:6.16
Linux » Linux Kernel » Version: 6.16.1

cpe:2.3:o:linux:linux_kernel:6.16.1
Linux » Linux Kernel » Version: 6.16.10

cpe:2.3:o:linux:linux_kernel:6.16.10
Linux » Linux Kernel » Version: 6.16.11

cpe:2.3:o:linux:linux_kernel:6.16.11
Linux » Linux Kernel » Version: 6.16.12

cpe:2.3:o:linux:linux_kernel:6.16.12
Linux » Linux Kernel » Version: 6.16.2

cpe:2.3:o:linux:linux_kernel:6.16.2
Linux » Linux Kernel » Version: 6.16.3

cpe:2.3:o:linux:linux_kernel:6.16.3
Linux » Linux Kernel » Version: 6.16.4

cpe:2.3:o:linux:linux_kernel:6.16.4
Linux » Linux Kernel » Version: 6.16.5

cpe:2.3:o:linux:linux_kernel:6.16.5
Linux » Linux Kernel » Version: 6.16.6

cpe:2.3:o:linux:linux_kernel:6.16.6
Linux » Linux Kernel » Version: 6.16.7

cpe:2.3:o:linux:linux_kernel:6.16.7
Linux » Linux Kernel » Version: 6.16.8

cpe:2.3:o:linux:linux_kernel:6.16.8
Linux » Linux Kernel » Version: 6.16.9

cpe:2.3:o:linux:linux_kernel:6.16.9
Linux » Linux Kernel » Version: 6.17

cpe:2.3:o:linux:linux_kernel:6.17
Linux » Linux Kernel » Version: 6.17.1

cpe:2.3:o:linux:linux_kernel:6.17.1
Linux » Linux Kernel » Version: 6.17.10

cpe:2.3:o:linux:linux_kernel:6.17.10
Linux » Linux Kernel » Version: 6.17.11

cpe:2.3:o:linux:linux_kernel:6.17.11
Linux » Linux Kernel » Version: 6.17.12

cpe:2.3:o:linux:linux_kernel:6.17.12
Linux » Linux Kernel » Version: 6.17.13

cpe:2.3:o:linux:linux_kernel:6.17.13
Linux » Linux Kernel » Version: 6.17.2

cpe:2.3:o:linux:linux_kernel:6.17.2
Linux » Linux Kernel » Version: 6.17.3

cpe:2.3:o:linux:linux_kernel:6.17.3
Linux » Linux Kernel » Version: 6.17.4

cpe:2.3:o:linux:linux_kernel:6.17.4
Linux » Linux Kernel » Version: 6.17.5

cpe:2.3:o:linux:linux_kernel:6.17.5
Linux » Linux Kernel » Version: 6.17.6

cpe:2.3:o:linux:linux_kernel:6.17.6
Linux » Linux Kernel » Version: 6.17.7

cpe:2.3:o:linux:linux_kernel:6.17.7
Linux » Linux Kernel » Version: 6.17.8

cpe:2.3:o:linux:linux_kernel:6.17.8
Linux » Linux Kernel » Version: 6.17.9

cpe:2.3:o:linux:linux_kernel:6.17.9
Linux » Linux Kernel » Version: 6.18

cpe:2.3:o:linux:linux_kernel:6.18
Linux » Linux Kernel » Version: 6.18.1

cpe:2.3:o:linux:linux_kernel:6.18.1
Linux » Linux Kernel » Version: 6.18.10

cpe:2.3:o:linux:linux_kernel:6.18.10
Linux » Linux Kernel » Version: 6.18.11

cpe:2.3:o:linux:linux_kernel:6.18.11
Linux » Linux Kernel » Version: 6.18.13

cpe:2.3:o:linux:linux_kernel:6.18.13
Linux » Linux Kernel » Version: 6.18.14

cpe:2.3:o:linux:linux_kernel:6.18.14
Linux » Linux Kernel » Version: 6.18.2

cpe:2.3:o:linux:linux_kernel:6.18.2
Linux » Linux Kernel » Version: 6.18.3

cpe:2.3:o:linux:linux_kernel:6.18.3
Linux » Linux Kernel » Version: 6.18.4

cpe:2.3:o:linux:linux_kernel:6.18.4
Linux » Linux Kernel » Version: 6.18.5

cpe:2.3:o:linux:linux_kernel:6.18.5
Linux » Linux Kernel » Version: 6.18.6

cpe:2.3:o:linux:linux_kernel:6.18.6
Linux » Linux Kernel » Version: 6.18.7

cpe:2.3:o:linux:linux_kernel:6.18.7
Linux » Linux Kernel » Version: 6.18.8

cpe:2.3:o:linux:linux_kernel:6.18.8
Linux » Linux Kernel » Version: 6.18.9

cpe:2.3:o:linux:linux_kernel:6.18.9
Linux » Linux Kernel » Version: 6.19

cpe:2.3:o:linux:linux_kernel:6.19
Linux » Linux Kernel » Version: 6.19.1

cpe:2.3:o:linux:linux_kernel:6.19.1
Linux » Linux Kernel » Version: 6.19.3

cpe:2.3:o:linux:linux_kernel:6.19.3
Linux » Linux Kernel » Version: 6.19.4

cpe:2.3:o:linux:linux_kernel:6.19.4
Linux » Linux Kernel » Version: 7.0

cpe:2.3:o:linux:linux_kernel:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-43276

Products

Pricing

Contact Us