A flaw was found in the Linux kernel's netfilter component, specifically within the `nft_set_pipapo` module. The `pipapo_drop()` function performs a stack out-of-bounds read. This occurs when an argument is evaluated at the call site before the function body executes, leading to a read beyond the allocated `rulemap` array. This could potentially lead to information disclosure or system instability.

Red Hat Enterprise Linux 10 Fix deferred kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Fix deferred kernel Red Hat Enterprise Linux 8 Fix deferred kernel-rt Red Hat Enterprise Linux 9 Fix deferred kernel Red Hat Enterprise Linux 9 Fix deferred kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-43453 https://nvd.nist.gov/vuln/detail/CVE-2026-43453 https://lore.kernel.org/linux-cve-announce/2026050858-CVE-2026-43453-fbba@gregkh/T