Page MenuHomeVyOS Platform
Create Task
Maniphest T8826

Update linux kernel version to fix CVE-2026-43284
Closed, ResolvedPublicBUG
Actions

Description

Today cve organization has published a new vulnerability affects how ESP-in-UDP packets are handled — specifically, when MSG_SPLICE_PAGES attaches pipe-backed pages to a socket buffer, ESP input may decrypt in place over memory it doesn't privately own, leading to potential data corruption or memory safety issues. For more detail information refers this article:
https://www.cve.org/CVERecord?id=CVE-2026-43284

There have been a few workarounds found:

Details

Version
1.4.5 1.5.0
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Security vulnerability

Related Objects
Search...

StatusSubtypeAssignedTask
 ResolvedBUGc-poT8826 Update linux kernel version to fix CVE-2026-43284
 ResolvedFEATURE REQUESTc-poT8827 Update Linux Kernel to 6.6.138
 ResolvedFEATURE REQUESTc-poT8828 Update Linux Kernel to 6.18.28

Event Timeline

j.vela created this task.May 8 2026, 2:48 PM
j.vela created this object in space S1 VyOS Public.
j.vela created this object with edit policy "All Users".
c-po claimed this task.May 8 2026, 5:29 PM
c-po added subtasks: T8827: Update Linux Kernel to 6.6.138, T8828: Update Linux Kernel to 6.18.28.
c-po added a project: VyOS 1.4 Sagitta (1.4.5).
pasik subscribed.May 8 2026, 6:09 PM
c-po changed Issue type from Bug (incorrect behavior) to Security vulnerability.May 8 2026, 9:14 PM
Viacheslav triaged this task as High priority.May 11 2026, 3:38 PM
c-po closed subtask T8827: Update Linux Kernel to 6.6.138 as Resolved.May 11 2026, 6:36 PM
c-po closed this task as Resolved.May 12 2026, 8:36 PM