Copyright © 2012 Red Hat, Inc. All rights reserved. Moderate 2026-05-06T00:00:00 kernel: minix: Add required sanity checking to minix_check_superblock() 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CWE-1287

In the Linux kernel, the following vulnerability has been resolved: minix: Add required sanity checking to minix_check_superblock() The fs/minix implementation of the minix filesystem does not currently support any other value for s_log_zone_size than 0. This is also the only value supported in util-linux; see mkfs.minix.c line 511. In addition, this patch adds some sanity checking for the other minix superblock fields, and moves the minix_blocks_needed() checks for the zmap and imap also to minix_check_super_block(). This also closes a related syzbot bug report.

A flaw was found in the Linux kernel's minix filesystem implementation. The `minix_check_superblock()` function lacks proper sanity checks for superblock fields, including `s_log_zone_size`. This oversight could allow a local attacker to craft a malicious minix filesystem that, when mounted, may lead to a system crash or corruption, resulting in a Denial of Service (DoS).

Red Hat Enterprise Linux 10 Not affected kernel Red Hat Enterprise Linux 6 Out of support scope kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt Red Hat Hardened Images Not affected util-linux https://www.cve.org/CVERecord?id=CVE-2026-43209 https://nvd.nist.gov/vuln/detail/CVE-2026-43209 https://lore.kernel.org/linux-cve-announce/2026050648-CVE-2026-43209-3ed2@gregkh/T