CVE-2026-23445

Summary

In the Linux kernel, the following vulnerability has been resolved:

igc: fix page fault in XDP TX timestamps handling

If an XDP application that requested TX timestamping is shutting down while the link of the interface in use is still up the following kernel splat is reported:

[ 883.803618] [ T1554] BUG: unable to handle page fault for address: ffffcfb6200fd008 … [ 883.803650] [ T1554] Call Trace: [ 883.803652] [ T1554] <TASK> [ 883.803654] [ T1554] igc_ptp_tx_tstamp_event+0xdf/0x160 [igc] [ 883.803660] [ T1554] igc_tsync_interrupt+0x2d5/0x300 [igc] …

During shutdown of the TX ring the xsk_meta pointers are left behind, so that the IRQ handler is trying to touch them.

This issue is now being fixed by cleaning up the stale xsk meta data on TX shutdown. TX timestamps on other queues remain unaffected.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux15fd021bc4270273d8f4b7f58fdda8a16214a377 < 5e4c90c94eb766d70e30694b7fe66862aabaf24baffected
LinuxLinux15fd021bc4270273d8f4b7f58fdda8a16214a377 < 31521c124e6488c4a81658e35199feb75a988d86affected
LinuxLinux15fd021bc4270273d8f4b7f58fdda8a16214a377 < b02fa17d1744d19cd3820bdbf6ec5d85547977bfaffected
LinuxLinux15fd021bc4270273d8f4b7f58fdda8a16214a377 < 45b33e805bd39f615d9353a7194b2da5281332dfaffected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.12.78 <= 6.12.*unaffected
LinuxLinux6.18.20 <= 6.18.*unaffected
LinuxLinux6.19.10 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References