cve-2026-43284

CVE-2026-43284 is a Linux kernel vulnerability in the xfrm ESP path where encrypted network packets can be decrypted in place over shared socket-buffer fragments. Microsoft published this CVE in its Security Update Guide on May 8, 2026, because Microsoft ships, secures, and operates Linux through Azure, Azure Linux, WSL-adjacent developer workflows, containers, and hybrid infrastructure. The bug is not a Windows kernel vulnerability but affects WindowsForum readers managing cross-platform environments. The flaw highlights risks at the boundary between performance optimization and memory ownership in modern operating systems. Administrators should apply the patch to affected Linux systems, especially those running in Azure or hybrid deployments.