CVE-2026-53087
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: bcmgenet: fix leaking free_bds
While reclaiming the tx queue we fast forward the write pointer to drop any data in flight. These dropped frames are not added back to the pool of free bds. We also need to tell the netdev that we are dropping said data.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 6a84791b63044cdee3ab55eb350e6352b751f584 < 150d06aae1839a6564ab200ef0e7291c3528bbb0 | affected |
| Linux | Linux | 991cd78f95f2a1d6097669afaff66aeeba35f5fd < 52b9f80993698138b90e5ca3a72550a2501f2a96 | affected |
| Linux | Linux | 3877efc13053408f4cf2e821006d6ddd1929200f < 3c3abbcfa05bad17965498ff7cc94c2418fa94b3 | affected |
| Linux | Linux | f1bacae8b655163dcbc3c54b9e714ef1a8986d7b < 25ff3a3e47ea635ec08dc93e84dd2bfe15abfebb | affected |
| Linux | Linux | f1bacae8b655163dcbc3c54b9e714ef1a8986d7b < ac4a29c331ecb5b10240c44247a8e010c95bc15b | affected |
| Linux | Linux | f1bacae8b655163dcbc3c54b9e714ef1a8986d7b < 3f3168300efb839028328d720ab3962f91d6a0d0 | affected |
| Linux | Linux | 6.15 | affected |
| Linux | Linux | 0 < 6.15 | unaffected |
| Linux | Linux | 6.18.33 <= 6.18.* | unaffected |
| Linux | Linux | 7.0.10 <= 7.0.* | unaffected |
| Linux | Linux | 7.1 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/150d06aae1839a6564ab200ef0e7291c3528bbb0
- https://git.kernel.org/stable/c/52b9f80993698138b90e5ca3a72550a2501f2a96
- https://git.kernel.org/stable/c/3c3abbcfa05bad17965498ff7cc94c2418fa94b3
- https://git.kernel.org/stable/c/25ff3a3e47ea635ec08dc93e84dd2bfe15abfebb
- https://git.kernel.org/stable/c/ac4a29c331ecb5b10240c44247a8e010c95bc15b
- https://git.kernel.org/stable/c/3f3168300efb839028328d720ab3962f91d6a0d0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.