HOMEVULNERABILITIESCVE-2026-43229
MEDIUM

CVE-2026-43229

Published: May 6, 2026· Updated: May 8, 2026

5.5
CVSS v3.1
EPSS:0.02%probability of exploitation in 30 daysPercentile:4.7th

Official Description

In the Linux kernel, the following vulnerability has been resolved:

media: chips-media: wave5: Fix device cleanup order to prevent kernel panic

Move video device unregistration to the beginning of the remove function

to ensure all video operations are stopped before cleaning up the worker

thread and disabling PM runtime. This prevents hardware register access

after the device has been powered down.

In polling mode, the hrtimer periodically triggers

wave5_vpu_timer_callback() which queues work to the kthread worker.

The worker executes wave5_vpu_irq_work_fn() which reads hardware

registers via wave5_vdi_read_register().

The original cleanup order disabled PM runtime and powered down hardware

before unregistering video devices. When autosuspend triggers and powers

off the hardware, the video devices are still registered and the worker

thread can still be triggered by the hrtimer, causing it to attempt

reading registers from powered-off hardware. This results in a bus error

(synchronous external abort) and kernel panic.

This causes random kernel panics during encoding operations:

Internal error: synchronous external abort: 0000000096000010

[#1] PREEMPT SMP

Modules linked in: wave5 rpmsg_ctrl rpmsg_char ...

CPU: 0 UID: 0 PID: 1520 Comm: vpu_irq_thread

Tainted: G M W

pc : wave5_vdi_read_register+0x10/0x38 [wave5]

lr : wave5_vpu_irq_work_fn+0x28/0x60 [wave5]

Call trace:

wave5_vdi_read_register+0x10/0x38 [wave5]

kthread_worker_fn+0xd8/0x238

kthread+0x104/0x120

ret_from_fork+0x10/0x20

Code: aa1e03e9 d503201f f9416800 8b214000 (b9400000)

---[ end trace 0000000000000000 ]---

Kernel panic - not syncing: synchronous external abort:

Fatal exception

NVD Source

Technical Analysis

CVE-2026-43229 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires low privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

A successful exploit results in availability disruption (denial of service), with a CVSS base score of 5.5.

CVSS v3.1 Vector Breakdown

Exploitability
Attack VectorLocal
Attack ComplexityLow
Privileges Req.Low
User InteractionNone
ScopeUnchanged
Impact
ConfidentialityNone
IntegrityNone
AvailabilityHigh
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Vendors & Products

Linux1 product
linux kernel
Source: NVD CPE · 1 total CPE entries

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

Official Patches & Advisories

All References (4)

Quick Facts

CVE IDCVE-2026-43229
CVSS Score5.5 / 10
SeverityMEDIUM
CISA KEVNo
EPSS (30d)0.02%
Affected1 vendor
PublishedMay 6, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-43229 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.