{
  "affected": [
    {
      "ranges": [
        {
          "events": [
            {
              "introduced": "57d104c153d3d6d7bea60089e80f37501851ed2c"
            },
            {
              "fixed": "d5c3a1a13f97355c397f9439d79cb04b182958a3"
            },
            {
              "fixed": "5d186731bc335cc049d4e57ab9f563cfab95593e"
            },
            {
              "fixed": "aa8d68d97c7f0ef966e51afc17fdbdc372700edf"
            },
            {
              "fixed": "aac2fee7513dd25042a616f86a1469b4858d2c5c"
            },
            {
              "fixed": "78d8e2d6352e8317686ee3a44811ac14c415a57d"
            },
            {
              "fixed": "ab71c146c135f9af1614ef0fc29a0a3b84f1a373"
            },
            {
              "fixed": "f8ef441811ec413717f188f63d99182f30f0f08e"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Linux",
        "name": "Kernel"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "3.18.0"
            },
            {
              "fixed": "5.15.202"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "5.16.0"
            },
            {
              "fixed": "6.1.165"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.2.0"
            },
            {
              "fixed": "6.6.128"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.7.0"
            },
            {
              "fixed": "6.12.75"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.13.0"
            },
            {
              "fixed": "6.18.16"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.19.0"
            },
            {
              "fixed": "6.19.6"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "database_specific": {
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43275.json"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Flush exception handling work when RPM level is zero\n\nEnsure that the exception event handling work is explicitly flushed during\nsuspend when the runtime power management level is set to UFS_PM_LVL_0.\n\nWhen the RPM level is zero, the device power mode and link state both\nremain active. Previously, the UFS core driver bypassed flushing exception\nevent handling jobs in this configuration. This created a race condition\nwhere the driver could attempt to access the host controller to handle an\nexception after the system had already entered a deep power-down state,\nresulting in a system crash.\n\nExplicitly flush this work and disable auto BKOPs before the suspend\ncallback proceeds. This guarantees that pending exception tasks complete\nand prevents illegal hardware access during the power-down sequence.",
  "id": "CVE-2026-43275",
  "modified": "2026-07-08T05:37:54.297798273Z",
  "published": "2026-05-06T11:28:58.174Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/5d186731bc335cc049d4e57ab9f563cfab95593e"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/78d8e2d6352e8317686ee3a44811ac14c415a57d"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/aa8d68d97c7f0ef966e51afc17fdbdc372700edf"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/aac2fee7513dd25042a616f86a1469b4858d2c5c"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/ab71c146c135f9af1614ef0fc29a0a3b84f1a373"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/d5c3a1a13f97355c397f9439d79cb04b182958a3"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/f8ef441811ec413717f188f63d99182f30f0f08e"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43275.json"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-43275"
    },
    {
      "type": "PACKAGE",
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"
    }
  ],
  "schema_version": "1.7.5",
  "summary": "scsi: ufs: core: Flush exception handling work when RPM level is zero"
}