CVE-2026-43466

A flaw was found in the Linux kernel's mlx5e network driver. During a transmit TX error recovery process, a desynchronization occurs in the Direct Memory Access DMA First-In, First-Out FIFO buffer. This desynchronization causes the system to incorrectly unmap memory addresses, which can lead to...

CVE-2026-43466 net/mlx5e: Fix DMA FIFO desync on error CQE SQ recovery

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix DMA FIFO desync on error CQE SQ recovery In case of a TX error CQE, a recovery flow is triggered, mlx5eresettxqsqccpc resets dmafifocc to 0 but not dmafifopc, desyncing the DMA FIFO producer and consumer. After...

CVE-2026-43466

Summary (CVE-2026-43466) : The Linux kernel mlx5e driver had a desync bug in the software DMA FIFO during TX error recovery. Specifically, during recovery, dma_fifo_cc was reset to 0 while dma_fifo_pc was not, causing producer/consumer to operate on misaligned indices. After recovery, new entries...

Linux Distros Unpatched Vulnerability : CVE-2026-43466

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: Fix DMA FIFO desync on error CQE SQ recovery In case of a TX error CQE, a recovery flow is triggered, mlx5eresettxqsqccpc resets dmafifocc to 0 but n...

SUSE CVE-2022-50764

In the Linux kernel, the following vulnerability has been resolved: ipv6/sit: use DEVSTATSINC to avoid data-races syzbot/KCSAN reported that multiple cpus are updating dev-stats.txerror concurrently. This is because sit tunnels are NETIFFLLTX, meaning their ndostartxmit is not protected by a...

EUVD-2025-14117

Malicious code in bioql PyPI...

CVE-2022-50004 xfrm: policy: fix metadata dst->dev xmit null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix metadata dst-dev xmit null pointer dereference When we try to transmit an skb with metadatadst attached i.e. dst-dev == NULL through xfrm interface we can hit a null pointer dereference1 in xfrmixmit2 -...

CVE-2025-37873 eth: bnxt: fix missing ring index trim on error path

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix missing ring index trim on error path Commit under Fixes converted txprod to be free running but missed masking it on the Tx error path. This crashes on error conditions, for example when DMA mapping fails...

CVE-2025-37873

CVE-2025-37873: In the Linux kernel bnxt Ethernet driver, the ring index trim was not applied on error paths, leading to a crash when DMA mapping fails. The issue has been resolved in the kernel fixing commit for bnxt, as referenced by the vulnerability entry and multiple OSV/ELSAs linking to CVE...

AZL-54750 CVE-2024-56651 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: can: hi311x: hi3110canist: fix potential use-after-free The commit a22bd630cfff "can: hi311x: do not report txerr and rxerr during bus-off" removed the reporting of rxerr and txerr even in case of correct operation i. e. not...

PT-2022-33563 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.17 through v5.19.1 Description: The issue is related to a missing skb drop on htc tx completion error in the ath11k module. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linu...