{
  "threat_severity" : "Moderate",
  "public_date" : "2026-05-05T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: ext4: always drain queued discard work in ext4_mb_release()",
    "id" : "2466801",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2466801"
  },
  "cvss3" : {
    "cvss3_base_score" : "5.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
    "status" : "draft"
  },
  "cwe" : "CWE-772",
  "details" : [ "A flaw was found in the ext4 filesystem within the Linux kernel. When an ext4 filesystem is initially mounted with the 'discard' option and then remounted with 'nodiscard', pending discard operations may not be properly cancelled or flushed. This can lead to unhandled resource operations if the filesystem is unmounted before these operations complete, potentially causing system instability or unexpected behavior under specific, difficult-to-trigger conditions." ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Fix deferred",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Fix deferred",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Fix deferred",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-43065\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-43065\nhttps://lore.kernel.org/linux-cve-announce/2026050532-CVE-2026-43065-4766@gregkh/T" ],
  "name" : "CVE-2026-43065",
  "csaw" : false
}