CVE-2026-43498 Linux CVE debrief

Who should care

Linux kernel maintainers, distro kernel teams, and operators running systems with the accel/ivpu driver enabled.

Technical summary

According to the supplied description, the ivpu GEM PRIME export path did not distinguish imported objects from native ones. When an imported GEM object was re-exported, buffer flags were lost, creating a mismatch between how the device should access the buffer and how it was actually exposed. The fix adds a custom prime_handle_to_fd callback that checks whether the object is imported and refuses re-export with -EOPNOTSUPP.

Defensive priority

Moderate to high for environments using the ivpu driver, because the issue can cause data corruption and incorrect device access. The supplied corpus does not include a CVSS score, exploit details, or evidence of active exploitation.

Recommended defensive actions

• Apply the kernel fix referenced in the official kernel.org links for CVE-2026-43498.
• Prioritize patching hosts that load or rely on the accel/ivpu driver.
• Validate any workflows that pass GEM handles between processes or components to ensure imported buffers are not re-exported.
• Monitor for unexpected device access errors or data corruption symptoms in affected systems.
• Track downstream kernel updates and vendor advisories for backported fixes.

Evidence notes

The NVD record for CVE-2026-43498 is marked 'Received' and lists two official kernel.org stable commit references. The supplied corpus provides the root cause and fix direction, but no CVSS vector, score, or KEV listing. Vendor attribution in the prompt is weak, so this debrief is scoped to the Linux kernel ivpu driver rather than a specific hardware vendor.

Official resources