cve-2026-43161

CVE-2026-43161 is a Linux kernel vulnerability in Intel's VT-d (Virtualization Technology for Directed I/O) implementation. It involves a flaw where PCIe devices using Address Translation Services (ATS) and passthrough can cause a hard lock of the host system when the device becomes inaccessible during removal, link failure, or userspace teardown. This issue primarily affects environments running KVM, VFIO, DPDK, GPU or NIC passthrough, and dense virtualization hosts. While not a remote code execution flaw, it represents a critical denial-of-service risk that can render a machine unresponsive. The vulnerability highlights the tension between high-performance hardware features and system safety, particularly in the IOMMU stack.